GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,172

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,257 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533... Moderate Unreviewed

CVE-2024-7004 was published Aug 6, 2024

Incorrect Authorization vulnerability identified in OpenText ArcSight Intelligence. Moderate Unreviewed

CVE-2024-6358 was published Aug 6, 2024

HaloITSM versions up to 2.146.1 are affected by a SAML XML Signature Wrapping (XSW) vulnerability... Critical Unreviewed

CVE-2024-6202 was published Aug 6, 2024

Improper access control in Calibre 6.9.0 ~ 7.14.0 allow unauthenticated attackers to achieve... Critical Unreviewed

CVE-2024-6782 was published Aug 6, 2024

Insecure Permissions vulnerability in UAB Lexita PanteraCRM CMS v.401.152 and Patera CRM CMS v... Critical Unreviewed

CVE-2024-40530 was published Aug 5, 2024

Incorrect Authorization vulnerability in Apache OFBiz. This issue affects Apache OFBiz: through... High Unreviewed

CVE-2024-38856 was published Aug 5, 2024

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly... High Unreviewed

CVE-2024-38884 was published Aug 2, 2024

In the System → Maintenance tool, the Logged Users tab surfaces sessionId data for all users via... Moderate Unreviewed

CVE-2024-4447 was published Jul 26, 2024

In affected versions of Octopus Server under certain conditions, a user with specific role... Low Unreviewed

CVE-2024-4811 was published Jul 25, 2024

AdTran SRG 834-5 HDC17600021F1 devices (with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1) have... High Unreviewed

CVE-2024-31970 was published Jul 24, 2024

Vulnerability in the Oracle Enterprise Asset Management product of Oracle E-Business Suite ... High Unreviewed

CVE-2024-21149 was published Jul 17, 2024

An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed

CVE-2024-5816 was published Jul 17, 2024

An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed

CVE-2024-5817 was published Jul 17, 2024

A non-admin user can cause short-term disruption in Target VM availability in Citrix Provisioning Moderate Unreviewed

CVE-2024-6150 was published Jul 10, 2024

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).... Moderate Unreviewed

CVE-2024-39871 was published Jul 9, 2024

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could disclose sensitive information... Moderate Unreviewed

CVE-2023-38368 was published Jun 27, 2024

Improper authorization in global search in GitLab EE affecting all versions from 16.11 prior to... High Unreviewed

CVE-2024-6323 was published Jun 27, 2024

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 16.11... Low Unreviewed

CVE-2024-4011 was published Jun 27, 2024

The Bookster WordPress plugin through 1.1.0 allows adding sensitive parameters when validating... Moderate Unreviewed

CVE-2024-5071 was published Jun 26, 2024

A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications,... High Unreviewed

CVE-2024-37002 was published Jun 25, 2024

Incorrect Authorization vulnerability in Artbees JupiterX Core allows Accessing Functionality Not... Critical Unreviewed

CVE-2023-38389 was published Jun 21, 2024

The License Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized access of... Moderate Unreviewed

CVE-2024-1639 was published Jun 21, 2024

IBM Storage Protect for Virtual Environments: Data Protection for VMware 8.1.0.0 through 8.1.22.0... High Unreviewed

CVE-2024-38329 was published Jun 19, 2024

The Tickera – WordPress Event Ticketing plugin for WordPress is vulnerable to unauthorized loss... Moderate Unreviewed

CVE-2024-5860 was published Jun 18, 2024

Acrobat Mobile Sign Android versions 24.4.2.33155 and earlier are affected by an Incorrect... Moderate Unreviewed

CVE-2024-34130 was published Jun 13, 2024

Previous 1…19…91 Next

Previous 1 2 … 17 18 19 20 21 … 90 91 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,257 advisories