GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
89 advisories
Filter by severity
A session fixation vulnerability in the B. Braun Melsungen AG SpaceCom administrative interface...
High
Unreviewed
CVE-2020-25152
was published
Apr 15, 2022
Joomla! Core is prone to a session fixation vulnerability. An attacker may leverage this issue to...
High
Unreviewed
CVE-2010-1434
was published
Apr 21, 2022
Wind River VxWorks 6.5 through 6.9 and vx7 has Session Fixation in the TCP component. This is a...
High
Unreviewed
CVE-2019-12258
was published
May 24, 2022
IBM AppScan Enterprise Edition 9.0 contains an unspecified vulnerability that could allow an...
High
Unreviewed
CVE-2016-9981
was published
May 17, 2022
Session fixation vulnerability in access control management in Synology Photo Station before 6.8...
High
Unreviewed
CVE-2022-22681
was published
Jul 7, 2022
Session Side jacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9...
High
Unreviewed
CVE-2017-4014
was published
May 17, 2022
Tivoli Storage Manager Operations Center could allow a local user to take over a previously...
High
Unreviewed
CVE-2016-6043
was published
May 17, 2022
In Sophos Web Appliance (SWA) before 4.3.1.2, Session Fixation could occur, aka NSWA-1310.
High
Unreviewed
CVE-2017-6412
was published
May 17, 2022
Session fixation vulnerability in Zoneminder 1.30 and earlier allows remote attackers to hijack...
High
Unreviewed
CVE-2016-10205
was published
May 17, 2022
Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows attackers to access the core log...
High
Unreviewed
CVE-2022-34536
was published
Jul 20, 2022
IBM MQ 8.0.0.4 - 8.0.0.12, 9.0.0.0 - 9.0.0.6, 9.1.0.0 - 9.1.0.2, and 9.1.0 - 9.1.2 AMQP Listeners...
High
Unreviewed
CVE-2019-4227
was published
May 24, 2022
Session fixation vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series ...
High
Unreviewed
CVE-2020-5654
was published
May 24, 2022
An OAuth session fixation vulnerability existed in the VPN login flow, where an attacker could...
High
Unreviewed
CVE-2020-15679
was published
Dec 22, 2022
The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2...
High
Unreviewed
CVE-2020-35229
was published
May 24, 2022
In VOS user session identifier (authentication token) is issued to the browser prior to...
High
Unreviewed
CVE-2018-16495
was published
May 24, 2022
A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when...
High
Unreviewed
CVE-2021-22927
was published
May 24, 2022
OpenSSL and SSLeay allow remote attackers to reuse SSL sessions and bypass access controls.
High
Unreviewed
CVE-1999-0428
was published
Apr 30, 2022
Session fixation vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT...
High
Unreviewed
CVE-2020-5645
was published
May 24, 2022
SolarWinds N-central through 2020.1 allows session hijacking and requires user interaction or...
High
Unreviewed
CVE-2020-15909
was published
May 24, 2022
The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower has incorrectly...
High
Unreviewed
CVE-2020-25198
was published
May 24, 2022
Session fixation vulnerability in Joomla! before 1.0.13 (aka Sunglow) allows remote attackers to...
High
Unreviewed
CVE-2007-4188
was published
May 1, 2022
A privilege escalation vulnerability exists in the session id functionality of WWBN AVideo 11.6...
High
Unreviewed
CVE-2022-30605
was published
Aug 23, 2022
In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time...
High
Unreviewed
CVE-2018-17199
was published
May 13, 2022
A vulnerability in the web management interface of Brocade Fabric OS versions before 8.2.1, 8.1...
High
Unreviewed
CVE-2018-6434
was published
May 13, 2022
A session fixation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to...
High
Unreviewed
CVE-2018-9026
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API