GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,275
Composer 4,908
Erlang 39
GitHub Actions 38
Go 2,568
Maven 6,036
npm 4,240
NuGet 754
pip 4,004
Pub 12
RubyGems 953
Rust 1,042
Swift 45

Unreviewed advisories

All unreviewed 273,868

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

38 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Moderate severity vulnerability that affects org.keycloak:keycloak-core Moderate

CVE-2017-12161 was published for org.keycloak:keycloak-core (Maven) Oct 18, 2018

The PrivateContent plugin for WordPress is vulnerable to protection mechanism bypass due to the... Moderate Unreviewed

CVE-2023-0581 was published Jan 30, 2023

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated... Moderate Unreviewed

CVE-2023-20106 was published May 18, 2023

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated... Moderate Unreviewed

CVE-2023-20172 was published May 18, 2023

Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated... Moderate Unreviewed

CVE-2023-20171 was published May 18, 2023

Client-Side enforcement of Server-Side security for the Command Centre server could be bypassed... Moderate Unreviewed

CVE-2023-23570 was published Dec 19, 2023

A client-side enforcement of server-side security [CWE-602] vulnerability in Fortinet... Moderate Unreviewed

CVE-2023-42787 was published Oct 10, 2023

A security defect was identified in Foundry workspace-server that enabled a user to bypass an... Moderate Unreviewed

CVE-2023-30955 was published Jun 29, 2023

Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow a... Moderate Unreviewed

CVE-2023-39218 was published Aug 8, 2023

Client-Side Enforcement of Server-Side Security vulnerability in Highfivery LLC Zero Spam allows... Moderate Unreviewed

CVE-2024-32521 was published May 17, 2024

Client-Side Enforcement of Server-Side Security vulnerability in weForms allows Removing... Moderate Unreviewed

CVE-2024-32512 was published May 17, 2024

Client-Side Enforcement of Server-Side Security vulnerability in Wpmet Wp Ultimate Review allows... Moderate Unreviewed

CVE-2024-32685 was published May 17, 2024

A client-side enforcement of server-side security in Fortinet FortiPortal version 6.0.0 through 6... Moderate Unreviewed

CVE-2023-48789 was published Jun 3, 2024

IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2, and 24.0.0 could allow a privileged... Moderate Unreviewed

CVE-2024-43188 was published Sep 18, 2024

Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow an... Moderate Unreviewed

CVE-2023-36535 was published Aug 8, 2023

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,... Moderate Unreviewed

CVE-2024-20476 was published Nov 6, 2024

Seth Fogie, member of AXIS Camera Station Pro Bug Bounty Program has found that it is possible to... Moderate Unreviewed

CVE-2024-6831 was published Nov 26, 2024

IBM Robotic Process Automation 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18 and IBM... Moderate Unreviewed

CVE-2024-49824 was published Jan 18, 2025

A client-side enforcement of server-side security vulnerability [CWE-602] in Fortinet... Moderate Unreviewed

CVE-2024-52960 was published Mar 11, 2025

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a... Moderate Unreviewed

CVE-2023-0704 was published Feb 7, 2023

In Zammad 6.4.x before 6.4.2, there is client-side enforcement of server-side security. When... Moderate Unreviewed

CVE-2025-32359 was published Apr 5, 2025

A Client-Side Enforcement of Server-Side Security issue was discovered in ProMinent MultiFLEX... Moderate Unreviewed

CVE-2017-14013 was published May 13, 2022

IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows... Moderate Unreviewed

CVE-2025-1838 was published May 3, 2025

Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62... Moderate Unreviewed

CVE-2022-3310 was published Nov 2, 2022

Outsystems Multiple File Upload < 3.1.0 is vulnerable to Unrestricted File Upload. The... Moderate Unreviewed

CVE-2025-28168 was published May 5, 2025

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

38 advisories