GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,854

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

238 advisories

Filter by severity

Sort by

Least recently updated

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47198 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47195 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47193 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47194 was published Jan 23, 2024

An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed

CVE-2023-47196 was published Jan 23, 2024

A phishing site could have repurposed an `about:` dialog to show phishing content with an... Moderate Unreviewed

CVE-2024-0749 was published Jan 23, 2024

A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA)... Moderate Unreviewed

CVE-2023-20275 was published Dec 12, 2023

Origin Validation Error vulnerability in Zscaler Client Connector on Linux allows Privilege Abuse... Moderate Unreviewed

CVE-2023-28794 was published Nov 6, 2023

Incorrect security UI in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote... Moderate Unreviewed

CVE-2023-5853 was published Nov 1, 2023

Incorrect security UI in Picture In Picture in Google Chrome prior to 119.0.6045.105 allowed a... Moderate Unreviewed

CVE-2023-5859 was published Nov 1, 2023

Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a... Moderate Unreviewed

CVE-2023-5851 was published Nov 1, 2023

Inappropriate implementation in WebApp Provider in Google Chrome prior to 119.0.6045.105 allowed... Moderate Unreviewed

CVE-2023-5858 was published Nov 1, 2023

The Zscaler Client Connector Installer and Unsintallers for Windows prior to 3.6 had an unquoted... High Unreviewed

CVE-2021-26735 was published Oct 23, 2023

Origin Validation Error vulnerability in Zscaler Client Connector on Linux allows Inclusion of... High Unreviewed

CVE-2023-28795 was published Oct 23, 2023

The Zscaler Client Connector for macOS prior to 3.6 did not sufficiently validate RPC clients. A... Moderate Unreviewed

CVE-2021-26737 was published Oct 23, 2023

The Vue.js Devtools extension was found to leak screenshot data back to a malicious web page via... Moderate Unreviewed

CVE-2023-5718 was published Oct 23, 2023

An Origin Validation vulnerability in MAC address validation of Juniper Networks Junos OS... Moderate Unreviewed

CVE-2023-44190 was published Oct 12, 2023

An Origin Validation vulnerability in MAC address validation of Juniper Networks Junos OS... Moderate Unreviewed

CVE-2023-44189 was published Oct 12, 2023

cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to... Critical Unreviewed

CVE-2023-3654 was published Oct 3, 2023

Movim prior to version 0.22 is affected by a Cross-Site WebSocket Hijacking vulnerability. This... High Unreviewed

CVE-2023-2848 was published Sep 14, 2023

An issue was discovered in Zoho ManageEngine Network Configuration Manager 12.6.165. The... High Unreviewed

CVE-2023-29505 was published Aug 4, 2023

Offscreen Canvas did not properly track cross-origin tainting, which could have been used to... Moderate Unreviewed

CVE-2023-4045 was published Aug 1, 2023

Incorrect security UI in Notifications in Google Chrome on Android prior to 103.0.5060.53 allowed... Moderate Unreviewed

CVE-2022-4917 was published Jul 29, 2023

A missing origin validation in Slate sandbox could be exploited by a malicious user to modify the... Moderate Unreviewed

CVE-2023-30949 was published Jul 26, 2023

Mattermost fails to properly validate the origin of a websocket connection allowing a MITM... High Unreviewed

CVE-2023-3581 was published Jul 17, 2023

Previous 1 2 3 4 5 … 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

238 advisories