GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,606 advisories
Filter by severity
A vulnerability classified as critical was found in CodeAstro Simple Voting System 1.0. Affected...
Moderate
Unreviewed
CVE-2024-1823
was published
Feb 23, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 12.0 to 16.7.6,...
Moderate
Unreviewed
CVE-2023-4895
was published
Feb 22, 2024
An authorization bypass vulnerability was discovered in GitLab affecting versions 15.1 prior to...
High
Unreviewed
CVE-2024-0410
was published
Feb 22, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.1 before 16...
Moderate
Unreviewed
CVE-2024-1525
was published
Feb 22, 2024
An issue has been discovered in GitLab affecting all versions before 16.7.6, all versions...
Low
Unreviewed
CVE-2023-3509
was published
Feb 22, 2024
A vulnerability in the Live Data server of Cisco Unified Intelligence Center could allow an...
Moderate
Unreviewed
CVE-2024-20325
was published
Feb 21, 2024
A vulnerability has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-1701
was published
Feb 21, 2024
Insufficiently Protected Credentials, : Improper Access Control vulnerability in Brivo ACS100,...
High
Unreviewed
CVE-2023-6259
was published
Feb 20, 2024
A weak permission was found in the backup directory in LaborOfficeFree affecting version 19.10....
Moderate
Unreviewed
CVE-2024-1343
was published
Feb 19, 2024
DELL ESI (Enterprise Storage Integrator) for SAP LAMA, version 10.0, contains an improper access...
High
Unreviewed
CVE-2023-39244
was published
Feb 15, 2024
EBM Technologies RISWEB's specific URL path is not properly controlled by permission, allowing...
Moderate
Unreviewed
CVE-2024-26263
was published
Feb 15, 2024
Microsoft Azure Kubernetes Service Confidential Container Remote Code Execution Vulnerability
Critical
Unreviewed
CVE-2024-21376
was published
Feb 13, 2024
Microsoft Entra Jira Single-Sign-On Plugin Elevation of Privilege Vulnerability
Critical
Unreviewed
CVE-2024-21401
was published
Feb 13, 2024
Microsoft Azure Site Recovery Elevation of Privilege Vulnerability
Critical
Unreviewed
CVE-2024-21364
was published
Feb 13, 2024
Skype for Business Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-20695
was published
Feb 13, 2024
An issue has been discovered in GitLab EE affecting all versions from 16.4 prior to 16.6.7, 16.7...
Moderate
Unreviewed
CVE-2023-6840
was published
Feb 8, 2024
An issue was discovered in the Windows Network Drive Connector when using Document Level Security...
Moderate
Unreviewed
CVE-2024-23447
was published
Feb 7, 2024
An issue was discovered by Elastic, whereby the Detection Engine Search API does not respect...
Moderate
Unreviewed
CVE-2024-23446
was published
Feb 7, 2024
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server...
Moderate
Unreviewed
CVE-2023-32479
was published
Feb 6, 2024
Memory corruption in Automotive Multimedia due to improper access control in HAB.
High
Unreviewed
CVE-2023-43517
was published
Feb 6, 2024
IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow an authenticated user to perform...
Moderate
Unreviewed
CVE-2023-38263
was published
Feb 2, 2024
IBM Maximo Asset Management 7.6.1.3 could allow a remote attacker to log into the admin panel due...
Moderate
Unreviewed
CVE-2023-32333
was published
Feb 2, 2024
MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers...
High
Unreviewed
CVE-2023-47867
was published
Feb 2, 2024
A vulnerability has been found in openBI up to 1.0.8 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-1114
was published
Jan 31, 2024
A vulnerability classified as problematic was found in SourceCodester Employee Management System...
Moderate
Unreviewed
CVE-2024-1011
was published
Jan 29, 2024
ProTip!
Advisories are also available from the
GraphQL API