GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,678
NuGet
645
pip
3,297
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
853 advisories
Filter by severity
Improper access control in the Intel(R) CSME software installer before version 2239.3.7.0 may...
High
Unreviewed
CVE-2022-29871
was published
Aug 11, 2023
In Dell SupportAssist for Home PCs (between v3.0 and v3.14.1) and SupportAssist for Business PCs...
High
Unreviewed
CVE-2023-44283
was published
Oct 17, 2024
The Facebook Chat Plugin for WordPress is vulnerable to authorization bypass due to a missing...
High
Unreviewed
CVE-2020-36838
was published
Oct 16, 2024
Improper Access Control in Imagine Cup allows an authorized attacker to elevate privileges over a...
High
Unreviewed
CVE-2024-38204
was published
Oct 16, 2024
Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version...
High
Unreviewed
CVE-2023-25777
was published
Oct 10, 2024
Insecure permissions in the Bluetooth Low Energy (BLE) component of Fire-Boltt Artillery Smart...
High
Unreviewed
CVE-2024-46539
was published
Oct 8, 2024
Visual C++ Redistributable Installer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43590
was published
Oct 8, 2024
Microsoft SharePoint Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43503
was published
Oct 8, 2024
LAN-W451NGR all versions provided by LOGITEC CORPORATION contains an improper access control...
High
Unreviewed
CVE-2023-38132
was published
Aug 18, 2023
An issue was discovered in SonarSource SonarQube before 9.9.5 LTA and 10.x before 10.5. A...
High
Unreviewed
CVE-2024-47910
was published
Oct 4, 2024
Vulnerability in Distro Linux Workbooth v2.5 that allows to escalate privileges to the root user...
High
Unreviewed
CVE-2024-9576
was published
Oct 7, 2024
An Improper Access Control vulnerability exists in the lunary-ai/lunary repository, affecting...
High
Unreviewed
CVE-2024-5131
was published
Jun 6, 2024
A vulnerability was discovered in GitLab CE and EE affecting all versions starting 16.0 prior to...
High
Unreviewed
CVE-2023-5207
was published
Sep 30, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 15.3 prior to 16.2...
High
Unreviewed
CVE-2023-4379
was published
Nov 9, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 15.3 before 16.5.6...
High
Unreviewed
CVE-2023-4812
was published
Jan 12, 2024
An issue has been discovered in Ultimate-licensed GitLab EE affecting all versions starting 13.12...
High
Unreviewed
CVE-2023-5106
was published
Oct 2, 2023
An authorization bypass vulnerability was discovered in GitLab affecting versions 15.1 prior to...
High
Unreviewed
CVE-2024-0410
was published
Feb 22, 2024
An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to...
High
Unreviewed
CVE-2024-0199
was published
Mar 7, 2024
PIX-LINK LV-WR22 RE3002-P1-01_V117.0 is vulnerable to Improper Access Control. The TELNET service...
High
Unreviewed
CVE-2024-46280
was published
Sep 30, 2024
A broken access control vulnerability in the KillDupUsr_func function of spx_restservice allows...
High
Unreviewed
CVE-2021-44467
was published
Oct 24, 2022
In SAP Commerce Cloud - versions HY_COM 1905, HY_COM 2005, HY_COM2105, HY_COM 2011, HY_COM 2205,...
High
Unreviewed
CVE-2023-42481
was published
Dec 12, 2023
When creating a journal entry template in SAP S/4HANA (Manage Journal Entry Template) - versions...
High
Unreviewed
CVE-2023-35870
was published
Jul 11, 2023
TestLink 1.9.20 is vulnerable to Incorrect Access Control in the TestPlan editing section. When a...
High
Unreviewed
CVE-2024-46097
was published
Sep 27, 2024
Improper access control in Zoom Mobile App for iOS and Zoom SDKs for iOS before version 5.16.5...
High
Unreviewed
CVE-2023-43585
was published
Dec 14, 2023
A host header injection vulnerability in scheduleR v0.0.18 allows attackers to obtain the...
High
Unreviewed
CVE-2024-45982
was published
Sep 26, 2024
ProTip!
Advisories are also available from the
GraphQL API