GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,265 advisories
Filter by severity
In queryChildDocuments of FileSystemProvider.java, there is a possible way to request access to...
Moderate
Unreviewed
CVE-2024-0032
was published
Feb 16, 2024
The Net::IPV4Addr module 0.10 for Perl does not properly consider extraneous zero characters in...
Critical
Unreviewed
CVE-2021-47155
was published
Mar 18, 2024
Broken Access Control in the Report functionality of Delinea PAM Secret Server 11.4 allows...
Moderate
Unreviewed
CVE-2024-25653
was published
Mar 14, 2024
Permission management vulnerability in the lock screen module.Successful exploitation of this...
High
Unreviewed
CVE-2023-52362
was published
Feb 18, 2024
An issue in the component EXR!ReadEXR+0x4eef0 of Irfanview v4.67.1.0 allows attackers to cause an...
Moderate
Unreviewed
CVE-2024-44915
was published
Aug 28, 2024
An issue in the component EXR!ReadEXR+0x40ef1 of Irfanview v4.67.1.0 allows attackers to cause an...
Moderate
Unreviewed
CVE-2024-44913
was published
Aug 28, 2024
An issue in the component EXR!ReadEXR+0x3df50 of Irfanview v4.67.1.0 allows attackers to cause an...
Moderate
Unreviewed
CVE-2024-44914
was published
Aug 28, 2024
Incorrect access control in Book Store Management System v1 allows attackers to access...
Critical
Unreviewed
CVE-2023-49543
was published
Mar 2, 2024
A login bypass in TOTOLINK A8000RU V7.1cu.643_B20200521 allows attackers to login to...
High
Unreviewed
CVE-2024-28338
was published
Mar 12, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS...
High
Unreviewed
CVE-2023-42860
was published
Feb 21, 2024
Relyum RELY-PCIe 22.2.1 devices suffer from a system group misconfiguration, allowing read access...
High
Unreviewed
CVE-2023-47579
was published
Dec 13, 2023
A vulnerability in the restricted security domain implementation of Cisco Application Policy...
Moderate
Unreviewed
CVE-2024-20279
was published
Aug 28, 2024
Archer Platform 6.8 before 6.14 P2 (6.14.0.2) contains an improper access control vulnerability....
Moderate
Unreviewed
CVE-2024-26310
was published
Feb 21, 2024
Desktop component service allows lateral movement between sessions in M-Files before 23.4.12455.0.
High
Unreviewed
CVE-2023-2112
was published
Jul 6, 2023
An issue was discovered in Lustre versions 2.13.x, 2.14.x, and 2.15.x before 2.15.4, allows...
Critical
Unreviewed
CVE-2023-51786
was published
Mar 7, 2024
An incorrect access control vulnerability in Rubrik CDM versions prior to 9.1.2-p1, 9.0.3-p6 and...
High
Unreviewed
CVE-2024-36068
was published
Aug 27, 2024
Incorrect Access Control in ITB-GmbH TradePro v9.5, allows remote attackers to receive all order...
High
Unreviewed
CVE-2023-36644
was published
Apr 4, 2024
A vulnerability, which was classified as critical, has been found in nafisulbari/itsourcecode...
Moderate
Unreviewed
CVE-2024-8216
was published
Aug 27, 2024
A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a...
Moderate
Unreviewed
CVE-2024-5814
was published
Aug 27, 2024
Siklu TG Terragraph devices before approximately 2.1.1 have a hardcoded root password that has...
Critical
Unreviewed
CVE-2022-47036
was published
Mar 18, 2024
A directory listing vulnerability in Customer Support System v1 allows attackers to list...
High
Unreviewed
CVE-2023-49545
was published
Mar 2, 2024
In TOTOLINK EX200 V4.0.3c.7314_B20191204, an attacker can obtain the configuration file without...
Critical
Unreviewed
CVE-2024-31815
was published
Apr 8, 2024
An issue in Multilaser RE160 firmware v5.07.51_pt_MTL01 and v5.07.52_pt_MTL01 allows attackers to...
High
Unreviewed
CVE-2023-38946
was published
Mar 6, 2024
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1...
High
Unreviewed
CVE-2023-44031
was published
Feb 3, 2024
An access control issue in /usr/sbin/httpd in Tenda TX9 V1 V22.03.02.54, Tenda AX3 V3 V16.03.12...
High
Unreviewed
CVE-2023-47422
was published
Feb 21, 2024
ProTip!
Advisories are also available from the
GraphQL API