GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,009
Composer 4,300
Erlang 31
GitHub Actions 21
Go 2,065
Maven 5,241
npm 3,744
NuGet 668
pip 3,427
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 240,096

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

66 advisories

Filter by severity

Sort by

Least recently updated

Incorrect Privilege Assignment vulnerability in Amento Tech Pvt ltd WPGuppy allows Privilege... High Unreviewed

CVE-2024-56280 was published Jan 7, 2025

Incorrect Privilege Assignment vulnerability in AllAccessible Team Accessibility by AllAccessible... High Unreviewed

CVE-2024-49644 was published Jan 7, 2025

A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to... High Unreviewed

CVE-2024-52049 was published Dec 31, 2024

A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to... High Unreviewed

CVE-2024-52048 was published Dec 31, 2024

A vulnerability, which was classified as critical, was found in X1a0He Adobe Downloader up to 1.3... High Unreviewed

CVE-2024-12786 was published Dec 19, 2024

Incorrect Privilege Assignment vulnerability in Halim KH Easy User Settings allows Privilege... High Unreviewed

CVE-2024-54365 was published Dec 16, 2024

A vulnerability has been identified in Spectrum Power 7 (All versions < V24Q3). The affected... High Unreviewed

CVE-2024-29119 was published Nov 12, 2024

Incorrect Privilege Assignment vulnerability in Matt Whiteman Bulk Change Role allows Privilege... High Unreviewed

CVE-2024-50504 was published Oct 30, 2024

Incorrect Privilege Assignment vulnerability in Azexo Marketing Automation by AZEXO allows... High Unreviewed

CVE-2024-50506 was published Oct 30, 2024

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows... High Unreviewed

CVE-2024-50550 was published Oct 29, 2024

Incorrect Privilege Assignment vulnerability in Stack Themes Bstone Demo Importer allows... High Unreviewed

CVE-2024-50481 was published Oct 29, 2024

A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2... High Unreviewed

CVE-2024-47904 was published Oct 23, 2024

: Incorrect Privilege Assignment vulnerability in Gerry Ntabuhashe GERRYWORKS Post by Mail allows... High Unreviewed

CVE-2024-49608 was published Oct 20, 2024

Incorrect Privilege Assignment vulnerability in themexpo RS-Members allows Privilege Escalation... High Unreviewed

CVE-2024-49219 was published Oct 17, 2024

The UserPlus plugin for WordPress is vulnerable to unauthorized modification of data due to an... High Unreviewed

CVE-2024-9519 was published Oct 10, 2024

This vulnerability exists in Shilpi Client Dashboard due to lack of authorization for... High Unreviewed

CVE-2024-47653 was published Oct 4, 2024

Incorrect Privilege Assignment vulnerability in favethemes Houzez houzez allows Privilege... High Unreviewed

CVE-2024-22303 was published Sep 17, 2024

Privilege Escalation vulnerability in favethemes Houzez Login Register houzez-login-register.This... High Unreviewed

CVE-2024-21743 was published Sep 17, 2024

The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in... High Unreviewed

CVE-2024-8253 was published Sep 11, 2024

IBM MQ Operator 2.0.26 and 3.2.4 could allow an authenticated user in a specifically defined role... High Unreviewed

CVE-2024-40681 was published Sep 7, 2024

Dell Power Manager (DPM), versions 3.15.0 and prior, contains an Incorrect Privilege Assignment... High Unreviewed

CVE-2024-39576 was published Aug 22, 2024

Incorrect privilege assignment vulnerability exists in SKYSEA Client View Ver.6.010.06 to Ver.19... High Unreviewed

CVE-2024-41139 was published Jul 29, 2024

Insecure Permissions vulnerability in Tencent wechat v.8.0.37 allows an attacker to escalate... High Unreviewed

CVE-2024-40433 was published Jul 27, 2024

Insecure permissions in hwameistor v0.14.3 allows attackers to access sensitive data and escalate... High Unreviewed

CVE-2024-36534 was published Jul 24, 2024

A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.9.0), RUGGEDCOM... High Unreviewed

CVE-2024-38278 was published Jul 9, 2024

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

66 advisories