Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,257 advisories

Loading
The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.5,... High Unreviewed
CVE-2024-40771 was published Jan 15, 2025
On-Premises Data Gateway Information Disclosure Vulnerability Moderate Unreviewed
CVE-2025-21403 was published Jan 14, 2025
Incorrect Authorization vulnerability in Drupal Pages Restriction Access allows Forceful Browsing... Moderate Unreviewed
CVE-2024-13302 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Responsive and off-canvas menu allows Forceful... Moderate Unreviewed
CVE-2024-13266 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal OhDear Integration allows Forceful Browsing.This... Moderate Unreviewed
CVE-2024-13290 was published Jan 9, 2025
Canlineapp Online 1.1 is vulnerable to Broken Access Control and allows users with the Auditor... Moderate Unreviewed
CVE-2024-56114 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Block permissions allows Forceful Browsing.This... High Unreviewed
CVE-2024-13282 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Freelinking allows Forceful Browsing.This issue... Moderate Unreviewed
CVE-2024-13270 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Monster Menus allows Forceful Browsing.This issue... Critical Unreviewed
CVE-2024-13281 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Smart IP Ban allows Forceful Browsing.This issue... Critical Unreviewed
CVE-2024-13277 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Content Entity Clone allows Forceful Browsing... Moderate Unreviewed
CVE-2024-13271 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Diff allows Functionality Misuse.This issue... Critical Unreviewed
CVE-2024-13278 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful... High Unreviewed
CVE-2024-13291 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Drupal REST & JSON API Authentication allows... Critical Unreviewed
CVE-2024-13258 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Advanced PWA inc Push Notifications allows... Critical Unreviewed
CVE-2024-13253 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Commerce View Receipt allows Forceful Browsing... Moderate Unreviewed
CVE-2024-13257 was published Jan 9, 2025
A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches ... Low Unreviewed
CVE-2024-54010 was published Jan 8, 2025
The WebChannel API, which is used to transport various information across processes, did not... Moderate Unreviewed
CVE-2025-0237 was published Jan 7, 2025
An improper access control vulnerability exists in SimplCommerce at commit... High Unreviewed
CVE-2024-50945 was published Dec 27, 2024
There is an improper authorization vulnerability in some Huawei smartphones. An attacker could... Low Unreviewed
CVE-2020-9081 was published Dec 27, 2024
Some Honor products are affected by incorrect privilege assignment vulnerability, successful... Low Unreviewed
CVE-2024-47157 was published Dec 26, 2024
Some Honor products are affected by incorrect privilege assignment vulnerability, successful... Moderate Unreviewed
CVE-2024-47148 was published Dec 26, 2024
oc_huff_tree_unpack in huffdec.c in libtheora in Theora through 1.0 7180717 has an invalid... Critical Unreviewed
CVE-2024-56431 was published Dec 25, 2024
In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects Moderate Unreviewed
CVE-2024-56350 was published Dec 20, 2024
In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of... Moderate Unreviewed
CVE-2024-56348 was published Dec 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database