GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,159

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,257 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Incorrect access control in Adapt Learning Adapt Authoring Tool <= 0.11.3 allows attackers with... Moderate Unreviewed

CVE-2024-50671 was published Nov 25, 2024

The application Sensei Mac Cleaner contains a local privilege escalation vulnerability, allowing... High Unreviewed

CVE-2024-7915 was published Nov 25, 2024

Incorrect authorization in the add permission component in Devolutions Remote Desktop Manager... Moderate Unreviewed

CVE-2024-11672 was published Nov 25, 2024

Incorrect authorization in the permission validation component of Devolutions Remote Desktop... Moderate Unreviewed

CVE-2024-11670 was published Nov 25, 2024

In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way for an... High Unreviewed

CVE-2023-21270 was published Nov 19, 2024

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component:... High Unreviewed

CVE-2024-21287 was published Nov 19, 2024

python_book V1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain... High Unreviewed

CVE-2024-50650 was published Nov 15, 2024

The python_food ordering system V1.0 has an unauthorized vulnerability that leads to the leakage... High Unreviewed

CVE-2024-50647 was published Nov 15, 2024

A misconfiguration in the fingerprint authentication mechanism of Binance: BTC, Crypto and NFTS... Critical Unreviewed

CVE-2024-31695 was published Nov 15, 2024

In lunary-ai/lunary versions 1.2.2 through 1.2.6, an incorrect authorization vulnerability allows... Critical Unreviewed

CVE-2024-3379 was published Nov 14, 2024

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.0 prior to 17.3.7... High Unreviewed

CVE-2024-9693 was published Nov 14, 2024

baltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User... Moderate Unreviewed

CVE-2024-45877 was published Nov 13, 2024

A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 (6GK7543-1AX10-0XE0) (All versions ... High Unreviewed

CVE-2024-50310 was published Nov 12, 2024

Mattermost versions 9.10.x <= 9.10.2, 9.11.x <= 9.11.1, 9.5.x <= 9.5.9 and 10.0.x <= 10.0.0 fail... Low Unreviewed

CVE-2024-42000 was published Nov 9, 2024

An Improper Authorization (Access Control Misconfiguration) vulnerability in MGT-COMMERCE GmbH v2... Moderate Unreviewed

CVE-2024-44765 was published Nov 8, 2024

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,... Moderate Unreviewed

CVE-2024-20537 was published Nov 6, 2024

Lylme Spage v1.9.5 is vulnerable to Incorrect Access Control. There is no limit on the number of... Critical Unreviewed

CVE-2024-48176 was published Nov 6, 2024

Chamilo LMS 1.11.26 is vulnerable to Incorrect Access Control via main/auth/profile. Non-admin... High Unreviewed

CVE-2024-30616 was published Nov 4, 2024

Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization... High Unreviewed

CVE-2024-45164 was published Nov 4, 2024

Incorrect Authorization vulnerability in WPChill Htaccess File Editor allows Accessing... Moderate Unreviewed

CVE-2024-49256 was published Nov 1, 2024

Sysmac Studio provided by OMRON Corporation contains an incorrect authorization vulnerability. If... Moderate Unreviewed

CVE-2024-49501 was published Nov 1, 2024

Insecure Permissions vulnerability in Ethereum v.1.12.2 allows a remote attacker to escalate... High Unreviewed

CVE-2024-51425 was published Oct 30, 2024

Insecure Permissions vulnerability in Ethereum v.1.12.2 allows a remote attacker to escalate... High Unreviewed

CVE-2024-51426 was published Oct 30, 2024

Incorrect Authorization vulnerability in Wpsoul Greenshift – animation and page builder blocks... Moderate Unreviewed

CVE-2024-50419 was published Oct 30, 2024

A permissions issue was addressed by removing vulnerable code and adding additional checks. This... Critical Unreviewed

CVE-2024-44217 was published Oct 29, 2024

Previous 1…13…91 Next

Previous 1 2 … 11 12 13 14 15 … 90 91 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,257 advisories