GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,249
Erlang
31
GitHub Actions
21
Go
2,018
Maven
5,000+
npm
3,723
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
857
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
18 advisories
Filter by severity
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP...
Moderate
Unreviewed
CVE-2018-5730
was published
May 13, 2022
html/admin/login.php in PacketFence before 3.0.2 allows remote attackers to conduct LDAP...
Critical
Unreviewed
CVE-2011-4069
was published
May 14, 2022
VMware vCenter Server (6.5 prior to 6.5 U1 and 6.0 prior to 6.0 U3c) does not correctly handle...
High
Unreviewed
CVE-2017-4927
was published
May 17, 2022
In Joomla! before 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a...
Critical
Unreviewed
CVE-2017-14596
was published
May 17, 2022
An issue was discovered on Accellion FTA devices before FTA_9_12_180. The home/seos/courier...
Critical
Unreviewed
CVE-2017-8790
was published
May 17, 2022
EMC Isilon OneFS 8.0.0.0, EMC Isilon OneFS 7.2.1.0 - 7.2.1.2, EMC Isilon OneFS 7.2.0.x, EMC...
High
Unreviewed
CVE-2016-9870
was published
May 17, 2022
IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote authenticated...
Moderate
Unreviewed
CVE-2019-4297
was published
May 24, 2022
Cloud Foundry NFS Volume Service, 1.7.x versions prior to 1.7.11 and 2.x versions prior to 2.3.0,...
High
Unreviewed
CVE-2019-11277
was published
May 24, 2022
OneDev is a development operations platform. If the LDAP external authentication mechanism is...
Moderate
Unreviewed
CVE-2021-32651
was published
May 24, 2022
Improper neutralization of special elements used in an LDAP query ('LDAP Injection')...
Moderate
Unreviewed
CVE-2022-45910
was published
Dec 7, 2022
A vulnerability, which was classified as problematic, has been found in hydrian TTRSS-Auth-LDAP....
Critical
Unreviewed
CVE-2015-10027
was published
Jan 7, 2023
sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters
High
Unreviewed
CVE-2022-4254
was published
Feb 1, 2023
The Active Directory Integration / LDAP Integration plugin for WordPress is vulnerable to LDAP...
High
Unreviewed
CVE-2023-3447
was published
Jun 29, 2023
A vulnerability, which was classified as problematic, has been found in Jahastech NxFilter 4.3.2...
Moderate
Unreviewed
CVE-2023-6905
was published
Dec 18, 2023
The optional "LDAP contacts provider" could be abused by privileged users to inject LDAP filter...
High
Unreviewed
CVE-2023-29050
was published
Jan 8, 2024
NVIDIA DGX A100 BMC contains a vulnerability where an attacker may cause an LDAP user injection....
Moderate
Unreviewed
CVE-2023-31025
was published
Jan 12, 2024
IBM Operational Decision Manager 8.10.3, 8.10.4, 8.10.5.1, 8.11, 8.11.0.1, and 8.12.0.1 could...
High
Unreviewed
CVE-2024-22319
was published
Feb 2, 2024
An issue was discovered in linqi before 1.4.0.1 on Windows. There is LDAP injection.
Critical
Unreviewed
CVE-2024-33868
was published
May 14, 2024
ProTip!
Advisories are also available from the
GraphQL API