Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,269 advisories

Loading
Moodle BigBlueButton web service leaks meeting joining information Moderate
CVE-2024-38273 was published for moodle/moodle (Composer) Jun 18, 2024
A potential weakness in AMD SPI protection features may allow a malicious attacker with Ring0 ... High Unreviewed
CVE-2022-23829 was published Jun 18, 2024
DLL Hijacking vulnerability has been found in CENTUM CAMS Log server provided by Yokogawa... High Unreviewed
CVE-2024-5650 was published Jun 17, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28969 was published Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28968 was published Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28967 was published Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28966 was published Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28965 was published Jun 13, 2024
ColdFusion versions 2023u7, 2021u13 and earlier are affected by an Improper Access Control... High Unreviewed
CVE-2024-34112 was published Jun 13, 2024
Magento Open Source Improper Access Control vulnerability Moderate
CVE-2024-34107 was published for magento/community-edition (Composer) Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Access Control... High Unreviewed
CVE-2024-26029 was published Jun 13, 2024
A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos... High Unreviewed
CVE-2024-2698 was published Jun 12, 2024
Keycloak's admin API allows low privilege users to use administrative functions High
CVE-2024-3656 was published for org.keycloak:keycloak-services (Maven) Jun 11, 2024
Visual Studio Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-29060 was published Jun 11, 2024
If a specific sequence of actions is performed when opening a new tab, the triggering principal... Moderate Unreviewed
CVE-2024-5687 was published Jun 11, 2024
An improper access control vulnerability in Trend Micro Apex One could allow a local attacker to... High Unreviewed
CVE-2024-37289 was published Jun 11, 2024
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2022-48683 was published Jun 10, 2024
Authlib has algorithm confusion with asymmetric public keys High
CVE-2024-37568 was published for authlib (pip) Jun 9, 2024
An Insecure Direct Object Reference (IDOR) vulnerability was identified in lunary-ai/lunary,... Critical Unreviewed
CVE-2024-5128 was published Jun 6, 2024
In gaizhenbiao/chuanhuchatgpt, specifically the version tagged as 20240121, there exists a... Moderate Unreviewed
CVE-2024-3404 was published Jun 6, 2024
An improper access control vulnerability exists in the lunary-ai/lunary repository, specifically... High Unreviewed
CVE-2024-5126 was published Jun 6, 2024
An Improper Access Control vulnerability exists in the lunary-ai/lunary repository, affecting... High Unreviewed
CVE-2024-5131 was published Jun 6, 2024
In lunary-ai/lunary version 1.2.5, an improper access control vulnerability exists due to a... Moderate Unreviewed
CVE-2024-5248 was published Jun 6, 2024
In lunary-ai/lunary versions 1.2.2 through 1.2.25, an improper access control vulnerability... Moderate Unreviewed
CVE-2024-5127 was published Jun 6, 2024
An improper access control vulnerability exists in lunary-ai/lunary versions up to and including... High Unreviewed
CVE-2024-3504 was published Jun 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database