GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,269 advisories
Filter by severity
Moodle BigBlueButton web service leaks meeting joining information
Moderate
CVE-2024-38273
was published
for
moodle/moodle
(Composer)
Jun 18, 2024
A potential weakness in AMD SPI protection features may allow a malicious attacker with Ring0 ...
High
Unreviewed
CVE-2022-23829
was published
Jun 18, 2024
DLL Hijacking vulnerability has been found in CENTUM CAMS Log server provided by Yokogawa...
High
Unreviewed
CVE-2024-5650
was published
Jun 17, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28969
was published
Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28968
was published
Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28967
was published
Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28966
was published
Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28965
was published
Jun 13, 2024
ColdFusion versions 2023u7, 2021u13 and earlier are affected by an Improper Access Control...
High
Unreviewed
CVE-2024-34112
was published
Jun 13, 2024
Magento Open Source Improper Access Control vulnerability
Moderate
CVE-2024-34107
was published
for
magento/community-edition
(Composer)
Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Access Control...
High
Unreviewed
CVE-2024-26029
was published
Jun 13, 2024
A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos...
High
Unreviewed
CVE-2024-2698
was published
Jun 12, 2024
Keycloak's admin API allows low privilege users to use administrative functions
High
CVE-2024-3656
was published
for
org.keycloak:keycloak-services
(Maven)
Jun 11, 2024
Visual Studio Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-29060
was published
Jun 11, 2024
If a specific sequence of actions is performed when opening a new tab, the triggering principal...
Moderate
Unreviewed
CVE-2024-5687
was published
Jun 11, 2024
An improper access control vulnerability in Trend Micro Apex One could allow a local attacker to...
High
Unreviewed
CVE-2024-37289
was published
Jun 11, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS...
High
Unreviewed
CVE-2022-48683
was published
Jun 10, 2024
Authlib has algorithm confusion with asymmetric public keys
High
CVE-2024-37568
was published
for
authlib
(pip)
Jun 9, 2024
An Insecure Direct Object Reference (IDOR) vulnerability was identified in lunary-ai/lunary,...
Critical
Unreviewed
CVE-2024-5128
was published
Jun 6, 2024
In gaizhenbiao/chuanhuchatgpt, specifically the version tagged as 20240121, there exists a...
Moderate
Unreviewed
CVE-2024-3404
was published
Jun 6, 2024
An improper access control vulnerability exists in the lunary-ai/lunary repository, specifically...
High
Unreviewed
CVE-2024-5126
was published
Jun 6, 2024
An Improper Access Control vulnerability exists in the lunary-ai/lunary repository, affecting...
High
Unreviewed
CVE-2024-5131
was published
Jun 6, 2024
In lunary-ai/lunary version 1.2.5, an improper access control vulnerability exists due to a...
Moderate
Unreviewed
CVE-2024-5248
was published
Jun 6, 2024
In lunary-ai/lunary versions 1.2.2 through 1.2.25, an improper access control vulnerability...
Moderate
Unreviewed
CVE-2024-5127
was published
Jun 6, 2024
An improper access control vulnerability exists in lunary-ai/lunary versions up to and including...
High
Unreviewed
CVE-2024-3504
was published
Jun 6, 2024
ProTip!
Advisories are also available from the
GraphQL API