Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,361 advisories

Loading
A vulnerability, which was classified as critical, was found in Codezips Online Institute... Moderate Unreviewed
CVE-2024-10993 was published Nov 8, 2024
Dell PowerProtect DD, versions prior to 8.1.0.0, 7.13.1.10, 7.10.1.40, and 7.7.5.50, contains an... Moderate Unreviewed
CVE-2024-48010 was published Nov 8, 2024
Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an... High Unreviewed
CVE-2023-22293 was published Nov 7, 2024
RabbitMQ HTTP API's queue deletion endpoint does not verify that the user has a required permission High
CVE-2024-51988 was published for rabbit_common (Erlang) Nov 6, 2024
bedla anhanhnguyen
michaelklishin
Waybox Enel TCF Agent service could be used to get administrator’s privileges over the Waybox... Critical Unreviewed
CVE-2023-29121 was published Nov 5, 2024
In certain conditions a request directed to the Waybox Enel X Web management application could... Moderate Unreviewed
CVE-2023-29115 was published Nov 5, 2024
The Zotpress plugin for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2024-7429 was published Nov 5, 2024
Access control vulnerable to user data deletion by anonynmous users Moderate
CVE-2024-51734 was published for AccessControl (pip) Nov 4, 2024
n1k9 d-maurer
perrinjerome dataflake
The Multiple Page Generator Plugin – MPG plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed
CVE-2024-7424 was published Nov 1, 2024
ICG.AspNetCore.Utilities.CloudStorage's Secure Token Durations Different Than Expected Moderate
CVE-2024-50353 was published for ICG.AspNetCore.Utilities.CloudStorage (NuGet) Oct 30, 2024
mitchelsellers
Improper access control in some Intel(R) DSA software before version 23.4.33 may allow a... Moderate Unreviewed
CVE-2023-35062 was published Oct 29, 2024
Improper access control in some Intel(R) oneAPI Toolkit and component software installers before... Moderate Unreviewed
CVE-2023-28715 was published Oct 29, 2024
Improper access control for some Intel(R) PROSet/Wireless and Intel(R) Killer(TM) Wi-Fi software... Moderate Unreviewed
CVE-2023-33875 was published Oct 29, 2024
Improper access control in some Intel(R) DSA software before version 23.4.33 may allow an... Moderate Unreviewed
CVE-2023-25073 was published Oct 29, 2024
In version 1.3.2 of lunary-ai/lunary, an Insecure Direct Object Reference (IDOR) vulnerability... Critical Unreviewed
CVE-2024-7474 was published Oct 29, 2024
An improper access control vulnerability in lunary-ai/lunary version 1.3.2 allows an attacker to... Critical Unreviewed
CVE-2024-7475 was published Oct 29, 2024
Mattermost Server allows user to get private channel names Moderate
CVE-2024-10241 was published for github.com/mattermost/mattermost/server/v8 (Go) Oct 29, 2024
Improper access control in some Intel(R) VROC software before version 8.0.8.1001 may allow an... High Unreviewed
CVE-2023-31271 was published Oct 28, 2024
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an... High Unreviewed
CVE-2023-38561 was published Oct 25, 2024
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an... High Unreviewed
CVE-2023-32647 was published Oct 25, 2024
Dell Data Lakehouse, version(s) 1.0.0.0, 1.1.0., contain(s) an Improper Access Control... Moderate Unreviewed
CVE-2024-47481 was published Oct 25, 2024
A vulnerability classified as critical has been found in SourceCodester Online Exam System 1.0.... Moderate Unreviewed
CVE-2024-10353 was published Oct 25, 2024
Improper access control in some Intel(R) SUR software before version 2.4.10587 may allow an... Moderate Unreviewed
CVE-2023-39941 was published Oct 24, 2024
Improper access control element in some Intel(R) Ethernet tools and driver install software,... High Unreviewed
CVE-2023-39432 was published Oct 24, 2024
VIMESA VHF/FM Transmitter Blue Plus is suffering from a Denial-of-Service (DoS) vulnerability. An... Moderate Unreviewed
CVE-2024-9692 was published Oct 24, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database