GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
843 advisories
Filter by severity
A data integrity vulnerability exists in the web interface /cgi-bin/upload_config.cgi...
High
Unreviewed
CVE-2023-45744
was published
Apr 17, 2024
An issue in sanluan PublicCMS v.4.0.202302.e allows an attacker to escalate privileges via the...
High
Unreviewed
CVE-2024-31759
was published
Apr 17, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ...
High
Unreviewed
CVE-2024-21114
was published
Apr 17, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ...
High
Unreviewed
CVE-2024-21110
was published
Apr 17, 2024
Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite (component: Offer...
High
Unreviewed
CVE-2024-21076
was published
Apr 17, 2024
Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2024-21074
was published
Apr 17, 2024
Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager...
High
Unreviewed
CVE-2024-21067
was published
Apr 17, 2024
An issue discovered in silex technology DS-600 Firmware v.1.4.1 allows a remote attacker to...
High
Unreviewed
CVE-2024-24485
was published
Apr 15, 2024
Linksys RE7000 v2.0.9, v2.0.11, and v2.0.15 have a command execution vulnerability in the ...
High
Unreviewed
CVE-2024-25852
was published
Apr 11, 2024
gaizhenbiao/chuanhuchatgpt is vulnerable to improper access control, allowing unauthorized access...
High
Unreviewed
CVE-2024-2217
was published
Apr 10, 2024
Microsoft Defender for IoT Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-29054
was published
Apr 9, 2024
Azure CycleCloud Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-29993
was published
Apr 9, 2024
Microsoft Defender for IoT Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-29055
was published
Apr 9, 2024
Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all order...
High
Unreviewed
CVE-2023-36644
was published
Apr 4, 2024
Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all orders...
High
Unreviewed
CVE-2023-36643
was published
Apr 4, 2024
SEMCMS 4.8 is vulnerable to Incorrect Access Control. The code installs SEMCMS_Funtion.php before...
High
Unreviewed
CVE-2024-28405
was published
Mar 29, 2024
An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and...
High
Unreviewed
CVE-2024-28960
was published
Mar 29, 2024
Improper access control in the Intel(R) oneAPI DPC++/C++ Compiler before version 2022.2.1 for...
High
Unreviewed
CVE-2023-35121
was published
Mar 28, 2024
Dell InsightIQ, version 5.0, contains an improper access control vulnerability. A remote low...
High
Unreviewed
CVE-2024-25962
was published
Mar 27, 2024
An issue was discovered on WyreStorm Apollo VX20 devices before 1.3.58. Remote attackers can...
High
Unreviewed
CVE-2024-25736
was published
Mar 27, 2024
Sikka SSCWindowsService 5 2023-09-14 executes a program as LocalSystem but allows full control by...
High
Unreviewed
CVE-2023-50702
was published
Mar 27, 2024
Improper access control in PAM JIT elevation in Devolutions Server 2024.1.6 and earlier allows an...
High
Unreviewed
CVE-2024-2915
was published
Mar 26, 2024
Incorrect access control in Customer Support System v1 allows non-administrator users to access...
High
Unreviewed
CVE-2023-49978
was published
Mar 21, 2024
Broken access control in the component /admin/management/users of School Fees Management System...
High
Unreviewed
CVE-2023-49982
was published
Mar 21, 2024
ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Access Control...
High
Unreviewed
CVE-2024-20767
was published
Mar 18, 2024
ProTip!
Advisories are also available from the
GraphQL API