Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,265 advisories

Loading
In queryChildDocuments of FileSystemProvider.java, there is a possible way to request access to... Moderate Unreviewed
CVE-2024-0032 was published Feb 16, 2024
The Net::IPV4Addr module 0.10 for Perl does not properly consider extraneous zero characters in... Critical Unreviewed
CVE-2021-47155 was published Mar 18, 2024
Broken Access Control in the Report functionality of Delinea PAM Secret Server 11.4 allows... Moderate Unreviewed
CVE-2024-25653 was published Mar 14, 2024
Permission management vulnerability in the lock screen module.Successful exploitation of this... High Unreviewed
CVE-2023-52362 was published Feb 18, 2024
An issue in the component EXR!ReadEXR+0x4eef0 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed
CVE-2024-44915 was published Aug 28, 2024
An issue in the component EXR!ReadEXR+0x40ef1 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed
CVE-2024-44913 was published Aug 28, 2024
An issue in the component EXR!ReadEXR+0x3df50 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed
CVE-2024-44914 was published Aug 28, 2024
Incorrect access control in Book Store Management System v1 allows attackers to access... Critical Unreviewed
CVE-2023-49543 was published Mar 2, 2024
A login bypass in TOTOLINK A8000RU V7.1cu.643_B20200521 allows attackers to login to... High Unreviewed
CVE-2024-28338 was published Mar 12, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2023-42860 was published Feb 21, 2024
Relyum RELY-PCIe 22.2.1 devices suffer from a system group misconfiguration, allowing read access... High Unreviewed
CVE-2023-47579 was published Dec 13, 2023
A vulnerability in the restricted security domain implementation of Cisco Application Policy... Moderate Unreviewed
CVE-2024-20279 was published Aug 28, 2024
Archer Platform 6.8 before 6.14 P2 (6.14.0.2) contains an improper access control vulnerability.... Moderate Unreviewed
CVE-2024-26310 was published Feb 21, 2024
Desktop component service allows lateral movement between sessions in M-Files before 23.4.12455.0.  High Unreviewed
CVE-2023-2112 was published Jul 6, 2023
An issue was discovered in Lustre versions 2.13.x, 2.14.x, and 2.15.x before 2.15.4, allows... Critical Unreviewed
CVE-2023-51786 was published Mar 7, 2024
An incorrect access control vulnerability in Rubrik CDM versions prior to 9.1.2-p1, 9.0.3-p6 and... High Unreviewed
CVE-2024-36068 was published Aug 27, 2024
Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all order... High Unreviewed
CVE-2023-36644 was published Apr 4, 2024
A vulnerability, which was classified as critical, has been found in nafisulbari/itsourcecode... Moderate Unreviewed
CVE-2024-8216 was published Aug 27, 2024
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a... Moderate Unreviewed
CVE-2024-5814 was published Aug 27, 2024
Siklu TG Terragraph devices before approximately 2.1.1 have a hardcoded root password that has... Critical Unreviewed
CVE-2022-47036 was published Mar 18, 2024
A directory listing vulnerability in Customer Support System v1 allows attackers to list... High Unreviewed
CVE-2023-49545 was published Mar 2, 2024
In TOTOLINK EX200 V4.0.3c.7314_B20191204, an attacker can obtain the configuration file without... Critical Unreviewed
CVE-2024-31815 was published Apr 8, 2024
An issue in Multilaser RE160 firmware v5.07.51_pt_MTL01 and v5.07.52_pt_MTL01 allows attackers to... High Unreviewed
CVE-2023-38946 was published Mar 6, 2024
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1... High Unreviewed
CVE-2023-44031 was published Feb 3, 2024
An access control issue in /usr/sbin/httpd in Tenda TX9 V1 V22.03.02.54, Tenda AX3 V3 V16.03.12... High Unreviewed
CVE-2023-47422 was published Feb 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database