Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
50
GitHub Actions
50
Go
3,673
Maven
5,000+
npm
5,000+
NuGet
932
pip
4,891
Pub
13
RubyGems
1,051
Rust
1,315
Swift
53
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

20 advisories

Loading
The issue was addressed with improved handling of caches. This issue is fixed in iOS 16. An app... Moderate Unreviewed
CVE-2022-32909 was published Nov 2, 2022
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37... Moderate Unreviewed
CVE-2021-44854 was published Dec 26, 2022
Under certain conditions SAP Commerce (OCC API) - versions HY_COM 2105, HY_COM 2205, COM_CLOUD... High Unreviewed
CVE-2023-37486 was published Aug 8, 2023
Sametime is impacted by sensitive fields with autocomplete enabled in the Legacy web chat client.... Moderate Unreviewed
CVE-2023-45696 was published Feb 10, 2024
SAP Business Objects Business Intelligence Platform is vulnerable to Insecure Storage as dynamic... Moderate Unreviewed
CVE-2024-33004 was published May 14, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... Moderate Unreviewed
CVE-2024-41906 was published Aug 13, 2024
The Rapid Cache plugin for WordPress is vulnerable to Cache Poisoning in all versions up to, and... High Unreviewed
CVE-2024-12314 was published Feb 18, 2025
Missing "no cache" headers in HCL Leap permits user directory information to be cached. Low Unreviewed
CVE-2023-37516 was published Apr 24, 2025
Missing "no cache" headers in HCL Leap permits sensitive data to be cached. Low Unreviewed
CVE-2024-30127 was published Apr 24, 2025
Missing "no cache" headers in HCL Leap permits sensitive data to be cached. Low Unreviewed
CVE-2023-37517 was published May 1, 2025
An insufficient implementation of cache vulnerability in Palo Alto Networks Prisma® Access... Moderate Unreviewed
CVE-2025-4233 was published Jun 13, 2025
A binary in the BoKS Server Agent component of Fortra's Core Privileged Access Manager (BoKS) on... Moderate Unreviewed
CVE-2025-5141 was published Jun 17, 2025
A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored... Moderate Unreviewed
CVE-2025-9901 was published Sep 3, 2025
The issue was addressed with improved handling of caches. This issue is fixed in Safari 26.1,... Moderate Unreviewed
CVE-2025-43392 was published Nov 4, 2025
Android App "Brother iPrint&Scan" versions 6.13.7 and earlier improperly uses an external cache... Moderate Unreviewed
CVE-2025-64696 was published Dec 9, 2025
The issue was addressed with improved handling of caches. This issue is fixed in macOS Sequoia 15... Low Unreviewed
CVE-2025-43410 was published Dec 12, 2025
An issue was discovered in Chamillo LMS 1.11.2. The Social Network /personal_data endpoint... High Unreviewed
CVE-2025-69581 was published Jan 16, 2026
IBM Planning Analytics Local 2.1.0 through 2.1.17 could allow an attacker to trick the caching... Moderate Unreviewed
CVE-2025-14806 was published Mar 18, 2026
Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static... Low Unreviewed
CVE-2026-22741 was published Apr 29, 2026
An issue was discovered in 6.0 before 6.0.5 and 5.2 before 5.2.14. `django.middleware.cache... Low Unreviewed
CVE-2026-6907 was published May 5, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database