Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

131 advisories

Loading
Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or... Moderate Unreviewed
CVE-2024-10978 was published Nov 14, 2024
A vulnerability in Grafana Labs Grafana OSS and Enterprise allows Privilege Escalation allows... Moderate Unreviewed
CVE-2024-9476 was published Nov 13, 2024
A vulnerability has been identified in Spectrum Power 7 (All versions < V24Q3). The affected... High Unreviewed
CVE-2024-29119 was published Nov 12, 2024
An attacker who gains local membership to sapsys group could replace local files usually... Moderate Unreviewed
CVE-2024-47595 was published Nov 12, 2024
A vulnerability classified as problematic has been found in SourceCodester Hospital Management... Moderate Unreviewed
CVE-2024-11073 was published Nov 11, 2024
Dell PowerProtect Data Domain, versions prior to 8.1.0.0, 7.13.1.10, 7.10.1.40, and 7.7.5.50,... Moderate Unreviewed
CVE-2024-45759 was published Nov 8, 2024
A vulnerability classified as critical was found in Codezips Online Institute Management System... Moderate Unreviewed
CVE-2024-10765 was published Nov 4, 2024
A vulnerability classified as critical has been found in Codezips Online Institute Management... Moderate Unreviewed
CVE-2024-10764 was published Nov 4, 2024
A vulnerability, which was classified as critical, has been found in Codezips Free Exam Hall... Moderate Unreviewed
CVE-2024-10766 was published Nov 4, 2024
A vulnerability has been found in TOTOLINK LR350 up to 9.3.5u.6369 and classified as critical.... Moderate Unreviewed
CVE-2024-10654 was published Nov 1, 2024
Incorrect Privilege Assignment vulnerability in Matt Whiteman Bulk Change Role allows Privilege... High Unreviewed
CVE-2024-50504 was published Oct 30, 2024
Incorrect Privilege Assignment vulnerability in Azexo Marketing Automation by AZEXO allows... High Unreviewed
CVE-2024-50506 was published Oct 30, 2024
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows... High Unreviewed
CVE-2024-50550 was published Oct 29, 2024
Incorrect Privilege Assignment vulnerability in Stack Themes Bstone Demo Importer allows... High Unreviewed
CVE-2024-50481 was published Oct 29, 2024
: Incorrect Privilege Assignment vulnerability in Udit Rawat Exam Matrix allows Privilege... Critical Unreviewed
CVE-2024-50485 was published Oct 29, 2024
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2... High Unreviewed
CVE-2024-47904 was published Oct 23, 2024
: Incorrect Privilege Assignment vulnerability in Gerry Ntabuhashe GERRYWORKS Post by Mail allows... High Unreviewed
CVE-2024-49608 was published Oct 20, 2024
Incorrect Privilege Assignment vulnerability in CodePassenger Job Board Manager for WordPress... Critical Unreviewed
CVE-2024-49322 was published Oct 17, 2024
Incorrect Privilege Assignment vulnerability in Madiri Salman Aashish Adding drop down roles in... Critical Unreviewed
CVE-2024-49217 was published Oct 17, 2024
Incorrect Privilege Assignment vulnerability in themexpo RS-Members allows Privilege Escalation... High Unreviewed
CVE-2024-49219 was published Oct 17, 2024
The UserPro plugin for WordPress is vulnerable to privilege escalation in versions up to, and... Critical Unreviewed
CVE-2024-9863 was published Oct 17, 2024
Vault Community Edition privilege escalation vulnerability High
CVE-2024-9180 was published for github.com/hashicorp/vault (Go) Oct 10, 2024
The UserPlus plugin for WordPress is vulnerable to unauthorized modification of data due to an... High Unreviewed
CVE-2024-9519 was published Oct 10, 2024
The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows... Moderate Unreviewed
CVE-2024-48941 was published Oct 10, 2024
This vulnerability exists in Shilpi Client Dashboard due to lack of authorization for... High Unreviewed
CVE-2024-47653 was published Oct 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database