GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,730
Composer 5,030
Erlang 39
GitHub Actions 38
Go 2,670
Maven 6,116
npm 4,296
NuGet 760
pip 4,075
Pub 12
RubyGems 957
Rust 1,058
Swift 45

Unreviewed advisories

All unreviewed 277,922

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote... Moderate Unreviewed

CVE-2024-6999 was published Aug 6, 2024

The date picker could partially obscure security prompts. This could be used by a malicious site... High Unreviewed

CVE-2024-7529 was published Aug 6, 2024

An issue was discovered in GitLab CE/EE affecting all versions starting from 11.8 prior to 16.11... Low Unreviewed

CVE-2024-6595 was published Jul 17, 2024

Inappropriate implementation in Picture in Picture in Google Chrome prior to 119.0.6045.105... Moderate Unreviewed

CVE-2023-7011 was published Jul 17, 2024

Windows MSHTML Platform Spoofing Vulnerability High Unreviewed

CVE-2024-38112 was published Jul 9, 2024

Form validation popups could capture escape key presses. Therefore, spamming form validation... Moderate Unreviewed

CVE-2024-6610 was published Jul 9, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed

CVE-2024-38093 was published Jun 20, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed

CVE-2024-38082 was published Jun 20, 2024

In certain scenarios a malicious website could attempt to display a fake location URL bar which... Moderate Unreviewed

CVE-2024-38313 was published Jun 13, 2024

By manipulating the fullscreen feature while opening a data-list, an attacker could have overlaid... Moderate Unreviewed

CVE-2024-5698 was published Jun 11, 2024

Inappropriate implementation in Downloads in Google Chrome prior to 125.0.6422.60 allowed a... Moderate Unreviewed

CVE-2024-4950 was published May 15, 2024

Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed

CVE-2024-30055 was published May 14, 2024

In multiple functions of NotificationManagerService.java, there is a possible way to not show a... Critical Unreviewed

CVE-2024-23708 was published May 7, 2024

Inappropriate implementation in iOS in Google Chrome prior to 123.0.6312.58 allowed a remote... Moderate Unreviewed

CVE-2024-2631 was published Mar 20, 2024

IBM PowerSC 1.3, 2.0, and 2.1 could allow a remote attacker to hijack the clicking action of the... Moderate Unreviewed

CVE-2023-50938 was published Feb 2, 2024

Inappropriate implementation in Downloads in Google Chrome prior to 121.0.6167.85 allowed a... Moderate Unreviewed

CVE-2024-0805 was published Jan 24, 2024

A bug in popup notifications delay calculation could have made it possible for an attacker to... High Unreviewed

CVE-2024-0750 was published Jan 23, 2024

A flaw was found in Quay. Clickjacking is when an attacker uses multiple transparent or opaque... Moderate Unreviewed

CVE-2023-4956 was published Nov 7, 2023

Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90... Moderate Unreviewed

CVE-2023-2938 was published May 31, 2023

Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90... Moderate Unreviewed

CVE-2023-2937 was published May 31, 2023

Inappropriate implementation in Extensions API in Google Chrome prior to 114.0.5735.90 allowed an... Moderate Unreviewed

CVE-2023-2941 was published May 31, 2023

Inappropriate implementation in Download in Google Chrome prior to 110.0.5481.77 allowed a remote... Moderate Unreviewed

CVE-2023-0700 was published Feb 7, 2023

Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414... Moderate Unreviewed

CVE-2023-0130 was published Jan 10, 2023

Under certain circumstances, a JavaScript alert (or prompt) could have been shown while another... Moderate Unreviewed

CVE-2022-22762 was published Dec 22, 2022

When resizing a popup after requesting fullscreen access, the popup would not display the... Moderate Unreviewed

CVE-2022-26383 was published Dec 22, 2022

Previous 1…45 Next

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

113 advisories