Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

3,073 advisories

Loading
In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in... High Unreviewed
CVE-2024-5009 was published Jun 25, 2024
Improper Privilege Management vulnerability in Membership Software WishList Member X allows... High Unreviewed
CVE-2024-37107 was published Jun 24, 2024
Improper privilege management vulnerability in Parallels Desktop Software, which affects versions... High Unreviewed
CVE-2024-6240 was published Jun 21, 2024
Local privilege escalation vulnerability allowed an attacker to misuse ESET's file operations... High Unreviewed
CVE-2024-2003 was published Jun 21, 2024
Rancher's External RoleTemplates can lead to privilege escalation Moderate
CVE-2023-32196 was published for github.com/rancher/rancher (Go) Jun 17, 2024
Privilege escalation vulnerability in the AMS module Impact: Successful exploitation of this... High Unreviewed
CVE-2024-36500 was published Jun 14, 2024
Vulnerability of unauthorized screenshot capturing in the WMS module Impact: Successful... Moderate Unreviewed
CVE-2024-36499 was published Jun 14, 2024
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows... Unknown Unreviewed
CVE-2024-5909 was published Jun 12, 2024
A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows... Unknown Unreviewed
CVE-2024-5907 was published Jun 12, 2024
An improper privilege management vulnerability exists in Tenable Security Center where an... Moderate Unreviewed
CVE-2024-5759 was published Jun 12, 2024
Keycloak's admin API allows low privilege users to use administrative functions High
CVE-2024-3656 was published for org.keycloak:keycloak-services (Maven) Jun 11, 2024
A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.11... Moderate Unreviewed
CVE-2024-33500 was published Jun 11, 2024
Privilege Escalation in TYPO3 CMS Moderate
GHSA-v5jp-4h2p-j2p4 was published for typo3/cms (Composer) Jun 5, 2024
Improper Privilege Management vulnerability in DeluxeThemes Userpro allows Privilege Escalation... Critical Unreviewed
CVE-2024-35700 was published Jun 4, 2024
Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege... High Unreviewed
CVE-2023-47837 was published Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED ** The improper privilege management vulnerability in the command ... Moderate Unreviewed
CVE-2024-29976 was published Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED ** The improper privilege management vulnerability in the SUID... Moderate Unreviewed
CVE-2024-29975 was published Jun 4, 2024
Improper privilege management vulnerability in Astrotalks affecting version 10/03/2023. This... High Unreviewed
CVE-2024-5525 was published May 31, 2024
TYPO3 may allow editors to change, create, or delete metadata of files not within their file mounts High
GHSA-4r76-xr68-w7m7 was published for typo3/cms (Composer) May 30, 2024
TYPO3 Broken Access Control in Localization Handling Moderate
GHSA-9rx9-7fmh-gj3g was published for typo3/cms-core (Composer) May 30, 2024
Improper Privilege Management vulnerability in Booking Ultra Pro allows Privilege Escalation.This... High Unreviewed
CVE-2024-32960 was published May 17, 2024
Improper Privilege Management vulnerability in Sirv allows Privilege Escalation.This issue... High Unreviewed
CVE-2024-32959 was published May 17, 2024
Improper Privilege Management vulnerability in Darren Cooney Instant Images allows Privilege... High Unreviewed
CVE-2024-33569 was published May 17, 2024
Improper Privilege Management vulnerability in UkrSolution Barcode Scanner with Inventory & Order... Critical Unreviewed
CVE-2024-33567 was published May 17, 2024
Improper Privilege Management vulnerability in WPFactory EAN for WooCommerce allows Privilege... High Unreviewed
CVE-2024-34370 was published May 17, 2024
ProTip! Advisories are also available from the GraphQL API