GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,536

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,023 advisories

Filter by severity

Sort by

Least recently updated

Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege... High Unreviewed

CVE-2024-24409 was published Nov 8, 2024

Improper Privilege Management vulnerability in WatchGuard EPDR, Panda AD360 and Panda Dome on... High Unreviewed

CVE-2024-8424 was published Nov 8, 2024

A GitHub App installed in organizations could upgrade some permissions from read to write access... High Unreviewed

CVE-2024-8810 was published Nov 8, 2024

Zohocorp ManageEngine EndPoint Central versions 11.3.2416.21 and below, 11.3.2428.9 and below are... High Unreviewed

CVE-2024-10203 was published Nov 7, 2024

An IDOR vulnerability exists in the 'Evaluations' function of the 'umgws datasets' section in... High Unreviewed

CVE-2024-7473 was published Oct 29, 2024

CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized access,... High Unreviewed

CVE-2024-9002 was published Oct 11, 2024

An issue was discovered in Infinera hiT 7300 5.60.50. Undocumented privileged functions in the ... High Unreviewed

CVE-2024-28813 was published Sep 30, 2024

An issue in the TP-Link MQTT Broker and API gateway of TP-Link Kasa KP125M v1.0.3 allows... High Unreviewed

CVE-2024-46549 was published Sep 30, 2024

OpenSlides 4.0.15 verifies passwords by comparing password hashes using a function with content... High Unreviewed

CVE-2024-22893 was published Sep 25, 2024

Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to... High Unreviewed

CVE-2024-45373 was published Sep 25, 2024

A symlink following vulnerability in the pouch cp function of AliyunContainerService pouch v1.3.1... High Unreviewed

CVE-2024-41228 was published Sep 23, 2024

logiops through 0.3.4, in its default configuration, allows any unprivileged user to configure... High Unreviewed

CVE-2024-45752 was published Sep 19, 2024

This issue was addressed through improved state management. This issue is fixed in iOS 18 and... High Unreviewed

CVE-2024-44147 was published Sep 17, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An app may... High Unreviewed

CVE-2024-40861 was published Sep 17, 2024

An Incorrect Access Control vulnerability was found in /music/index.php?page=user_list and /music... High Unreviewed

CVE-2024-42798 was published Sep 16, 2024

The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for... High Unreviewed

CVE-2024-8246 was published Sep 16, 2024

The Login with phone number plugin for WordPress is vulnerable to privilege escalation in all... High Unreviewed

CVE-2024-6482 was published Sep 16, 2024

An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3. A vulnerability has been... High Unreviewed

CVE-2024-39924 was published Sep 13, 2024

An issue was discovered in Vaultwarden (formerly Bitwarden_RS) 1.30.3. It lacks an offboarding... High Unreviewed

CVE-2024-39925 was published Sep 13, 2024

A privilege escalation vulnerability exists in the Rockwell Automation affected products. The... High Unreviewed

CVE-2024-8533 was published Sep 12, 2024

The Rockwell Automation affected product contains a vulnerability that allows a threat actor to... High Unreviewed

CVE-2024-7960 was published Sep 12, 2024

The Samsung Universal Print Driver for Windows is potentially vulnerable to escalation of... High Unreviewed

CVE-2024-5760 was published Sep 11, 2024

CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized access,... High Unreviewed

CVE-2024-8306 was published Sep 11, 2024

In getConfig of SoftVideoDecoderOMXComponent.cpp, there is a possible out of bounds write due to... High Unreviewed

CVE-2024-40658 was published Sep 11, 2024

In addPreferencesForType of AccountTypePreferenceLoader.java, there is a possible way to disable... High Unreviewed

CVE-2024-40657 was published Sep 11, 2024

Previous 1 2 3 4 5 … 80 81 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,023 advisories