GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
222 advisories
Filter by severity
Improper Privilege Management vulnerability in DeluxeThemes Userpro allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-35700
was published
Jun 4, 2024
Improper Privilege Management vulnerability in UkrSolution Barcode Scanner with Inventory & Order...
Critical
Unreviewed
CVE-2024-33567
was published
May 17, 2024
Improper Privilege Management vulnerability in Masteriyo LMS allows Privilege Escalation.This...
Critical
Unreviewed
CVE-2024-24882
was published
May 17, 2024
Improper Privilege Management vulnerability in WebWizards SalesKing allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-22157
was published
May 17, 2024
Improper Privilege Management vulnerability in CodeRevolution Demo My WordPress allows Privilege...
Critical
Unreviewed
CVE-2024-31290
was published
May 17, 2024
Improper Privilege Management vulnerability in 8theme XStore Core allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-33552
was published
May 17, 2024
Improper Privilege Management vulnerability in Wholesale WholesaleX allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-30542
was published
May 17, 2024
Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce...
Critical
Unreviewed
CVE-2024-32511
was published
May 17, 2024
Improper Privilege Management vulnerability in powerfulwp Local Delivery Drivers for WooCommerce...
Critical
Unreviewed
CVE-2023-51481
was published
May 17, 2024
Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege...
Critical
Unreviewed
CVE-2023-51424
was published
May 17, 2024
Improper Privilege Management vulnerability in IOSS WP MLM Unilevel allows Privilege Escalation...
Critical
Unreviewed
CVE-2023-51476
was published
May 17, 2024
Improper Privilege Management vulnerability in Glowlogix WP Frontend Profile allows Privilege...
Critical
Unreviewed
CVE-2023-51483
was published
May 17, 2024
Improper Privilege Management vulnerability in Favethemes Houzez allows Privilege Escalation.This...
Critical
Unreviewed
CVE-2023-26540
was published
May 17, 2024
Improper Privilege Management vulnerability in XTemos Woodmart Core allows Privilege Escalation...
Critical
Unreviewed
CVE-2023-32244
was published
May 17, 2024
Improper Privilege Management vulnerability in HasThemes HT Mega allows Privilege Escalation.This...
Critical
Unreviewed
CVE-2023-37999
was published
May 17, 2024
Improper Privilege Management vulnerability in favethemes Houzez Login Register allows Privilege...
Critical
Unreviewed
CVE-2023-26009
was published
May 17, 2024
Improper Privilege Management vulnerability in WhatArmy WatchTowerHQ allows Privilege Escalation...
Critical
Unreviewed
CVE-2023-25701
was published
May 17, 2024
Privilege Escalation in kubevirt
Critical
CVE-2020-14316
was published
for
kubevirt.io/kubevirt
(Go)
Apr 24, 2024
Improper Privilege Management vulnerability in Jacques Malgrange Rencontre – Dating Site allows...
Critical
Unreviewed
CVE-2023-51425
was published
Apr 24, 2024
In Blue Planet® products through 22.12, a misconfiguration in the SAML implementation allows...
Critical
Unreviewed
CVE-2024-2005
was published
Mar 6, 2024
HashiCorp Vault Improper Privilege Management
Critical
CVE-2020-10661
was published
for
github.com/hashicorp/vault/vault
(Go)
Jan 30, 2024
An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to...
Critical
Unreviewed
CVE-2024-22922
was published
Jan 26, 2024
Arbitrary remote code execution within `wrangler dev` Workers sandbox
Critical
CVE-2023-7080
was published
for
wrangler
(npm)
Jan 3, 2024
In checkDebuggingDisallowed of DeviceVersionFragment.java, there is a
possible way to access...
Critical
Unreviewed
CVE-2023-48418
was published
Jan 3, 2024
An attacker in the wifi vicinity of a target Google Home can spy on the victim, resulting in...
Critical
Unreviewed
CVE-2023-48419
was published
Jan 2, 2024
ProTip!
Advisories are also available from the
GraphQL API