Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,678
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

269 advisories

Loading
Improper Privilege Management vulnerability in favethemes Houzez Login Register allows Privilege... Critical Unreviewed
CVE-2023-26009 was published May 17, 2024
Improper Privilege Management vulnerability in XTemos Woodmart Core allows Privilege Escalation... Critical Unreviewed
CVE-2023-32244 was published May 17, 2024
Improper Privilege Management vulnerability in WhatArmy WatchTowerHQ allows Privilege Escalation... Critical Unreviewed
CVE-2023-25701 was published May 17, 2024
Improper Privilege Management vulnerability in Favethemes Houzez allows Privilege Escalation.This... Critical Unreviewed
CVE-2023-26540 was published May 17, 2024
bbPress unauthenticated privilege-escalation Critical
CVE-2020-13693 was published for bbpress/bbpress (Composer) May 24, 2022
Privilege Escalation in kubevirt Critical
CVE-2020-14316 was published for kubevirt.io/kubevirt (Go) Apr 24, 2024
Improper Privilege Management vulnerability in Jacques Malgrange Rencontre – Dating Site allows... Critical Unreviewed
CVE-2023-51425 was published Apr 24, 2024
phpMyAdmin Improper Privilege Management Critical
CVE-2017-18264 was published for phpmyadmin/phpmyadmin (Composer) May 13, 2022
Drupal Entity access bypass for entities that do not have UUIDs or have protected revisions Critical
CVE-2017-6925 was published for drupal/core (Composer) May 13, 2022
An issue was discovered in getRememberedSerializedIdentity function in CookieRememberMeManager... Critical Unreviewed
CVE-2021-28411 was published Aug 11, 2023
Vulnerability of permissions not being strictly verified in the window management module... Critical Unreviewed
CVE-2023-44105 was published Oct 11, 2023
A?CWE-269: Improper Privilege Management vulnerability exists?that could cause?a local privilege... Critical Unreviewed
CVE-2023-5402 was published Oct 4, 2023
SiberianCMS - CWE-274: Improper Handling of Insufficient Privileges Critical Unreviewed
CVE-2023-39375 was published Sep 27, 2023
An issue was discovered in OPSWAT MetaDefender KIOSK 4.6.1.9996. Built-in features of Windows ... Critical Unreviewed
CVE-2023-36657 was published Sep 15, 2023
An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering... Critical Unreviewed
CVE-2023-31175 was published Aug 31, 2023
Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a... Critical Unreviewed
CVE-2019-13690 was published Aug 25, 2023
The Donation Forms by Charitable plugin for WordPress is vulnerable to privilege escalation in... Critical Unreviewed
CVE-2023-4404 was published Aug 23, 2023
IBM Robotic Process Automation 21.0.0 through 21.0.7.1 and 23.0.0 through 23.0.1 is vulnerable... Critical Unreviewed
CVE-2023-38734 was published Aug 23, 2023
The MStore API WordPress plugin before 3.9.9 does not prevent visitors from creating user... Critical Unreviewed
CVE-2023-3076 was published Jul 10, 2023
Use After Free (UAF) vulnerability in the uinput module.Successful exploitation of this... Critical Unreviewed
CVE-2021-46894 was published Jul 6, 2023
The Ultimate Member WordPress plugin before 2.6.7 does not prevent visitors from creating user... Critical Unreviewed
CVE-2023-3460 was published Jul 4, 2023
In Splunk App for Stream versions below 8.1.1, a low-privileged user could use a vulnerability in... Critical Unreviewed
CVE-2023-32713 was published Jun 1, 2023
An issue found in edjing Mix v.7.09.01 for Android allows unauthorized apps to cause escalation... Critical Unreviewed
CVE-2023-29734 was published May 30, 2023
Instruments with Illumina Universal Copy Service v1.x and v2.x contain an unnecessary privileges... Critical Unreviewed
CVE-2023-1966 was published Apr 28, 2023
Improper privilege management vulnerability in default.cmd file in PowerPanel Business Local... Critical Unreviewed
CVE-2023-25133 was published Apr 24, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database