GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,017
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
15 advisories
Filter by severity
In Kibana versions before 7.12.0 and 6.8.15 a flaw in the session timeout was discovered where...
Low
Unreviewed
CVE-2021-22136
was published
May 24, 2022
HCL Commerce is affected by an Insufficient Session Expiration vulnerability. After the session...
Low
Unreviewed
CVE-2021-27751
was published
May 7, 2022
IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 could allow a local user to obtain sensitive...
Low
Unreviewed
CVE-2016-0234
was published
May 13, 2022
Improper session management vulnerability in Samsung Health prior to 6.20.1.005 prevents logging...
Low
Unreviewed
CVE-2022-22283
was published
Jan 11, 2022
An insufficient session expiration vulnerability exists in the ArubaOS command line interface....
Low
Unreviewed
CVE-2023-22771
was published
Mar 1, 2023
IBM Robotic Process Automation 21.0.1 through 21.0.7 and 23.0.0 through 23.0.1 could allow a user...
Low
Unreviewed
CVE-2023-22591
was published
Mar 15, 2023
Insufficient Session Expiration in GitHub repository fossbilling/fossbilling prior to 0.5.5.
Low
Unreviewed
CVE-2023-4005
was published
Jul 31, 2023
A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as...
Low
Unreviewed
CVE-2024-0350
was published
Jan 10, 2024
A vulnerability was found in Totolink N350RT 9.3.5u.6255. It has been declared as problematic....
Low
Unreviewed
CVE-2024-0943
was published
Jan 26, 2024
A vulnerability was found in Totolink T8 4.1.5cu.833_20220905. It has been rated as problematic....
Low
Unreviewed
CVE-2024-0944
was published
Jan 26, 2024
SAP Enable Now, before version 1908, does not invalidate session tokens in a timely manner. The...
Low
Unreviewed
CVE-2020-6197
was published
May 24, 2022
A vulnerability has been identified in QMS Automotive (All versions < V12.39). The QMS.Mobile...
Low
Unreviewed
CVE-2023-40732
was published
Sep 14, 2023
A vulnerability was found in Totolink N200RE V5 9.3.5u.6255_B20211224. It has been classified as...
Low
Unreviewed
CVE-2024-0942
was published
Jan 26, 2024
An insufficient session expiration vulnerability [CWE-613] vulnerability in FortiOS 7.2.5 and...
Low
Unreviewed
CVE-2022-45862
was published
Aug 13, 2024
In affected versions of Octopus Server OIDC cookies were using the wrong expiration time which...
Low
Unreviewed
CVE-2024-7998
was published
Aug 21, 2024
ProTip!
Advisories are also available from the
GraphQL API