GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
3,073 advisories
Filter by severity
In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in...
High
Unreviewed
CVE-2024-5009
was published
Jun 25, 2024
Improper Privilege Management vulnerability in Membership Software WishList Member X allows...
High
Unreviewed
CVE-2024-37107
was published
Jun 24, 2024
Improper privilege management vulnerability in Parallels Desktop Software, which affects versions...
High
Unreviewed
CVE-2024-6240
was published
Jun 21, 2024
Local privilege escalation vulnerability allowed an attacker to misuse ESET's file operations...
High
Unreviewed
CVE-2024-2003
was published
Jun 21, 2024
Rancher's External RoleTemplates can lead to privilege escalation
Moderate
CVE-2023-32196
was published
for
github.com/rancher/rancher
(Go)
Jun 17, 2024
Privilege escalation vulnerability in the AMS module
Impact: Successful exploitation of this...
High
Unreviewed
CVE-2024-36500
was published
Jun 14, 2024
Vulnerability of unauthorized screenshot capturing in the WMS module
Impact: Successful...
Moderate
Unreviewed
CVE-2024-36499
was published
Jun 14, 2024
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows...
Unknown
Unreviewed
CVE-2024-5909
was published
Jun 12, 2024
A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows...
Unknown
Unreviewed
CVE-2024-5907
was published
Jun 12, 2024
An improper privilege management vulnerability exists in Tenable Security Center where an...
Moderate
Unreviewed
CVE-2024-5759
was published
Jun 12, 2024
Keycloak's admin API allows low privilege users to use administrative functions
High
CVE-2024-3656
was published
for
org.keycloak:keycloak-services
(Maven)
Jun 11, 2024
A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.11...
Moderate
Unreviewed
CVE-2024-33500
was published
Jun 11, 2024
Privilege Escalation in TYPO3 CMS
Moderate
GHSA-v5jp-4h2p-j2p4
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Improper Privilege Management vulnerability in DeluxeThemes Userpro allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-35700
was published
Jun 4, 2024
Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege...
High
Unreviewed
CVE-2023-47837
was published
Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED **
The improper privilege management vulnerability in the command ...
Moderate
Unreviewed
CVE-2024-29976
was published
Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED **
The improper privilege management vulnerability in the SUID...
Moderate
Unreviewed
CVE-2024-29975
was published
Jun 4, 2024
Improper privilege management vulnerability in Astrotalks affecting version 10/03/2023. This...
High
Unreviewed
CVE-2024-5525
was published
May 31, 2024
TYPO3 may allow editors to change, create, or delete metadata of files not within their file mounts
High
GHSA-4r76-xr68-w7m7
was published
for
typo3/cms
(Composer)
May 30, 2024
TYPO3 Broken Access Control in Localization Handling
Moderate
GHSA-9rx9-7fmh-gj3g
was published
for
typo3/cms-core
(Composer)
May 30, 2024
Improper Privilege Management vulnerability in Booking Ultra Pro allows Privilege Escalation.This...
High
Unreviewed
CVE-2024-32960
was published
May 17, 2024
Improper Privilege Management vulnerability in Sirv allows Privilege Escalation.This issue...
High
Unreviewed
CVE-2024-32959
was published
May 17, 2024
Improper Privilege Management vulnerability in Darren Cooney Instant Images allows Privilege...
High
Unreviewed
CVE-2024-33569
was published
May 17, 2024
Improper Privilege Management vulnerability in UkrSolution Barcode Scanner with Inventory & Order...
Critical
Unreviewed
CVE-2024-33567
was published
May 17, 2024
Improper Privilege Management vulnerability in WPFactory EAN for WooCommerce allows Privilege...
High
Unreviewed
CVE-2024-34370
was published
May 17, 2024
ProTip!
Advisories are also available from the
GraphQL API