GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,342
Composer 4,134
Erlang 29
GitHub Actions 19
Go 1,941
Maven 5,135
npm 3,678
NuGet 645
pip 3,297
Pub 11
RubyGems 877
Rust 830
Swift 35

Unreviewed advisories

All unreviewed 231,347

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

774 advisories

Filter by severity

Sort by

Least recently updated

The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to authorization... Moderate Unreviewed

CVE-2020-36831 was published Oct 16, 2024

In Splunk Enterprise versions below 9.2.3 and 9.1.6, and Splunk Secure Gateway versions on Splunk... Moderate Unreviewed

CVE-2024-45735 was published Oct 14, 2024

In Splunk Enterprise versions 9.3.0, 9.2.3, and 9.1.6, a low-privileged user that does not hold... Moderate Unreviewed

CVE-2024-45734 was published Oct 14, 2024

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version... Moderate Unreviewed

CVE-2023-27301 was published Oct 10, 2024

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version... Moderate Unreviewed

CVE-2023-24481 was published Oct 10, 2024

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version... Moderate Unreviewed

CVE-2023-22848 was published Oct 10, 2024

Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version... Moderate Unreviewed

CVE-2023-26585 was published Oct 10, 2024

Windows Remote Desktop Services Tampering Vulnerability Moderate Unreviewed

CVE-2024-43456 was published Oct 8, 2024

Bandisoft BandiView 7.05 is vulnerable to Incorrect Access Control in sub_0x3d80fc via a crafted... Moderate Unreviewed

CVE-2024-45870 was published Oct 3, 2024

A vulnerability was found in SourceCodester Online Railway Reservation System 1.0 and classified... Moderate Unreviewed

CVE-2024-9321 was published Sep 29, 2024

A vulnerability was found in SourceCodester Online Railway Reservation System 1.0. It has been... Moderate Unreviewed

CVE-2024-9298 was published Sep 28, 2024

Mattermost versions 9.11.x <= 9.11.0, 9.10.x <= 9.10.1, 9.9.x <= 9.9.2 and 9.5.x <= 9.5.8 fail to... Moderate Unreviewed

CVE-2024-42406 was published Sep 26, 2024

A vulnerability in the access control list (ACL) programming of Cisco IOS Software running on... Moderate Unreviewed

CVE-2024-20465 was published Sep 25, 2024

A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic... Moderate Unreviewed

CVE-2024-9003 was published Sep 19, 2024

The issue was addressed with improved checks. This issue is fixed in visionOS 2, macOS Sequoia 15... Moderate Unreviewed

CVE-2024-40825 was published Sep 17, 2024

Kashipara Music Management System v1.0 is vulnerable to Incorrect Access Control via /music/ajax... Moderate Unreviewed

CVE-2024-42794 was published Sep 16, 2024

An Incorrect Access Control vulnerability was found in /music/ajax.php?action=delete_genre in... Moderate Unreviewed

CVE-2024-42796 was published Sep 16, 2024

An Incorrect Access Control vulnerability was found in /music/view_user.php?id=3 and /music... Moderate Unreviewed

CVE-2024-42795 was published Sep 16, 2024

Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user... Moderate Unreviewed

CVE-2024-36247 was published Sep 16, 2024

Improper access control in Intel(R) RAID Web Console software for all versions may allow an... Moderate Unreviewed

CVE-2024-34543 was published Sep 16, 2024

Improper access control in Intel(R) RAID Web Console software for all versions may allow an... Moderate Unreviewed

CVE-2024-32940 was published Sep 16, 2024

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker... Moderate Unreviewed

CVE-2024-20343 was published Sep 11, 2024

An improper access control vulnerability [CWE-284] in FortiEDR Manager API 6.2.0 through 6.2.2, 6... Moderate Unreviewed

CVE-2024-45323 was published Sep 10, 2024

A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All... Moderate Unreviewed

CVE-2024-37993 was published Sep 10, 2024

Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains an Improper Access Control... Moderate Unreviewed

CVE-2024-39580 was published Sep 10, 2024

Previous 1 2 3 4 5 … 30 31 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

774 advisories