GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,627
Composer 4,226
Erlang 31
GitHub Actions 19
Go 1,991
Maven 5,174
npm 3,708
NuGet 661
pip 3,339
Pub 11
RubyGems 884
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 234,545

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

847 advisories

Filter by severity

Sort by

Least recently updated

Incorrect Authorization vulnerability identified in OpenText ArcSight Intelligence. Moderate Unreviewed

CVE-2024-6358 was published Aug 6, 2024

In the System → Maintenance tool, the Logged Users tab surfaces sessionId data for all users via... Moderate Unreviewed

CVE-2024-4447 was published Jul 26, 2024

An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed

CVE-2024-5816 was published Jul 17, 2024

An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed

CVE-2024-5817 was published Jul 17, 2024

A non-admin user can cause short-term disruption in Target VM availability in Citrix Provisioning Moderate Unreviewed

CVE-2024-6150 was published Jul 10, 2024

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1).... Moderate Unreviewed

CVE-2024-39871 was published Jul 9, 2024

IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could disclose sensitive information... Moderate Unreviewed

CVE-2023-38368 was published Jun 27, 2024

The Bookster WordPress plugin through 1.1.0 allows adding sensitive parameters when validating... Moderate Unreviewed

CVE-2024-5071 was published Jun 26, 2024

The License Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized access of... Moderate Unreviewed

CVE-2024-1639 was published Jun 21, 2024

The Tickera – WordPress Event Ticketing plugin for WordPress is vulnerable to unauthorized loss... Moderate Unreviewed

CVE-2024-5860 was published Jun 18, 2024

Acrobat Mobile Sign Android versions 24.4.2.33155 and earlier are affected by an Incorrect... Moderate Unreviewed

CVE-2024-34130 was published Jun 13, 2024

Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical... Moderate Unreviewed

CVE-2024-0160 was published Jun 12, 2024

Incorrect authorization vulnerability in Cybozu Garoon 5.0.0 to 6.0.0 allows a remote... Moderate Unreviewed

CVE-2024-31403 was published Jun 11, 2024

Incorrect authorization vulnerability in Cybozu Garoon 5.0.0 to 5.15.2 allows a remote... Moderate Unreviewed

CVE-2024-31402 was published Jun 11, 2024

An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6... Moderate Unreviewed

CVE-2024-23669 was published Jun 5, 2024

Incorrect Authorization vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter ... Moderate Unreviewed

CVE-2024-34434 was published May 17, 2024

Avast Premium Security Sandbox Protection Incorrect Authorization Privilege Escalation... Moderate Unreviewed

CVE-2023-42124 was published May 3, 2024

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 before 16... Moderate Unreviewed

CVE-2024-4006 was published Apr 25, 2024

Incorrect Authorization vulnerability in Supsystic Data Tables Generator.This issue affects Data... Moderate Unreviewed

CVE-2023-25043 was published Apr 17, 2024

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component:... Moderate Unreviewed

CVE-2024-21120 was published Apr 17, 2024

In JetBrains TeamCity before 2024.03 authenticated users without administrative permissions could... Moderate Unreviewed

CVE-2024-31134 was published Mar 28, 2024

Improper authorization in the report management and creation module of BMC Control-M branches 9.0... Moderate Unreviewed

CVE-2024-1604 was published Mar 18, 2024

A vulnerability has been identified in Siveillance Control (All versions >= V2.8 < V3.1.1). The... Moderate Unreviewed

CVE-2023-45793 was published Mar 12, 2024

SAP Fiori Front End Server - version 605, allows altering of approver details on the read-only... Moderate Unreviewed

CVE-2024-22133 was published Mar 12, 2024

In JetBrains YouTrack before 2024.1.25893 user without appropriate permissions could restore... Moderate Unreviewed

CVE-2024-28229 was published Mar 7, 2024

Previous 1 2 3 4 5 … 33 34 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

847 advisories