GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
847 advisories
Filter by severity
An Improper Authorization (Access Control Misconfiguration) vulnerability in MGT-COMMERCE GmbH v2...
Moderate
Unreviewed
CVE-2024-44765
was published
Nov 8, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20537
was published
Nov 6, 2024
Incorrect Authorization vulnerability in WPChill Htaccess File Editor allows Accessing...
Moderate
Unreviewed
CVE-2024-49256
was published
Nov 1, 2024
Sysmac Studio provided by OMRON Corporation contains an incorrect authorization vulnerability. If...
Moderate
Unreviewed
CVE-2024-49501
was published
Nov 1, 2024
Incorrect Authorization vulnerability in Wpsoul Greenshift – animation and page builder blocks...
Moderate
Unreviewed
CVE-2024-50419
was published
Oct 30, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44301
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44247
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44137
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44253
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44287
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-40855
was published
Oct 28, 2024
The Chef Habitat builder-api on-prem-builder package with any version lower than habitat/builder...
Moderate
Unreviewed
CVE-2024-9825
was published
Oct 28, 2024
SchedMD Slurm before 24.05.4 has Incorrect Authorization. A mistake in authentication handling in...
Moderate
Unreviewed
CVE-2024-48936
was published
Oct 28, 2024
In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error...
Moderate
Unreviewed
CVE-2024-47025
was published
Oct 25, 2024
There is a possible Local bypass of user interaction due to an insecure default value. This could...
Moderate
Unreviewed
CVE-2024-44099
was published
Oct 25, 2024
A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause...
Moderate
Unreviewed
CVE-2024-10295
was published
Oct 24, 2024
Incorrect access control in XIAO HE Smart 4.3.1 allows attackers to access sensitive information...
Moderate
Unreviewed
CVE-2024-48540
was published
Oct 24, 2024
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ...
Moderate
Unreviewed
CVE-2024-20482
was published
Oct 23, 2024
Archer Platform 2024.03 before version 2024.09 is affected by an API authorization bypass...
Moderate
Unreviewed
CVE-2024-49209
was published
Oct 22, 2024
Archer Platform 2024.03 before version 2024.08 is affected by an authorization bypass...
Moderate
Unreviewed
CVE-2024-49208
was published
Oct 22, 2024
A vulnerability has been found in didi DDMQ 1.0 and classified as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-10173
was published
Oct 20, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone...
Moderate
Unreviewed
CVE-2024-20420
was published
Oct 16, 2024
Vulnerability in the PeopleSoft Enterprise FIN Expenses product of Oracle PeopleSoft (component:...
Moderate
Unreviewed
CVE-2024-21249
was published
Oct 15, 2024
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/ODBC). ...
Moderate
Unreviewed
CVE-2024-21262
was published
Oct 15, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9...
Moderate
Unreviewed
CVE-2024-9623
was published
Oct 10, 2024
ProTip!
Advisories are also available from the
GraphQL API