Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,683
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

12 advisories

Passbolt Api Tabnabbing when opening URI with menu "Open URI in a new tab" Moderate
GHSA-qm5v-pj64-852j was published for passbolt/passbolt_api (Composer) May 20, 2024
Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are... High Unreviewed
CVE-2023-29320 was published Aug 10, 2023
Adobe Experience Manager versions 6.5.13.0 (and earlier) is affected by a Violation of Secure... Moderate Unreviewed
CVE-2022-30683 was published Sep 17, 2022
Adobe Connect version 11.2.2 (and earlier) is affected by a secure design principles violation... Moderate Unreviewed
CVE-2021-36061 was published May 24, 2022
Magento Violation of Secure Design Principles vulnerability in RMA PDF filename formats High
CVE-2021-28583 was published for magento/community-edition (Composer) May 24, 2022
A weakness was found in Encrypt Only boot mode in Zynq UltraScale+ devices. This could lead to an... Moderate Unreviewed
CVE-2019-5478 was published May 24, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012... Moderate Unreviewed
CVE-2022-28244 was published May 12, 2022
Non-atomic writes in cgc Moderate
CVE-2020-36468 was published for cgc (Rust) Aug 25, 2021
Multiple soundness issues in cgc Moderate
CVE-2020-36467 was published for cgc (Rust) Aug 25, 2021
fake-static allows converting any reference into a `'static` reference High
GHSA-8xw8-mmqv-frqq was published for fake-static (Rust) Aug 25, 2021
Arbitrary return types in xcb Critical
CVE-2021-26956 was published for xcb (Rust) Aug 25, 2021
Error on unsupported architectures in raw-cpuid Moderate
CVE-2021-26307 was published for raw-cpuid (Rust) Aug 25, 2021
tdunlap607
ProTip! Advisories are also available from the GraphQL API