Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

222 advisories

Loading
Improper Privilege Management vulnerability in DeluxeThemes Userpro allows Privilege Escalation... Critical Unreviewed
CVE-2024-35700 was published Jun 4, 2024
Improper Privilege Management vulnerability in UkrSolution Barcode Scanner with Inventory & Order... Critical Unreviewed
CVE-2024-33567 was published May 17, 2024
Improper Privilege Management vulnerability in Masteriyo LMS allows Privilege Escalation.This... Critical Unreviewed
CVE-2024-24882 was published May 17, 2024
Improper Privilege Management vulnerability in WebWizards SalesKing allows Privilege Escalation... Critical Unreviewed
CVE-2024-22157 was published May 17, 2024
Improper Privilege Management vulnerability in CodeRevolution Demo My WordPress allows Privilege... Critical Unreviewed
CVE-2024-31290 was published May 17, 2024
Improper Privilege Management vulnerability in 8theme XStore Core allows Privilege Escalation... Critical Unreviewed
CVE-2024-33552 was published May 17, 2024
Improper Privilege Management vulnerability in Wholesale WholesaleX allows Privilege Escalation... Critical Unreviewed
CVE-2024-30542 was published May 17, 2024
Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce... Critical Unreviewed
CVE-2024-32511 was published May 17, 2024
Improper Privilege Management vulnerability in powerfulwp Local Delivery Drivers for WooCommerce... Critical Unreviewed
CVE-2023-51481 was published May 17, 2024
Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege... Critical Unreviewed
CVE-2023-51424 was published May 17, 2024
Improper Privilege Management vulnerability in IOSS WP MLM Unilevel allows Privilege Escalation... Critical Unreviewed
CVE-2023-51476 was published May 17, 2024
Improper Privilege Management vulnerability in Glowlogix WP Frontend Profile allows Privilege... Critical Unreviewed
CVE-2023-51483 was published May 17, 2024
Improper Privilege Management vulnerability in Favethemes Houzez allows Privilege Escalation.This... Critical Unreviewed
CVE-2023-26540 was published May 17, 2024
Improper Privilege Management vulnerability in XTemos Woodmart Core allows Privilege Escalation... Critical Unreviewed
CVE-2023-32244 was published May 17, 2024
Improper Privilege Management vulnerability in HasThemes HT Mega allows Privilege Escalation.This... Critical Unreviewed
CVE-2023-37999 was published May 17, 2024
Improper Privilege Management vulnerability in favethemes Houzez Login Register allows Privilege... Critical Unreviewed
CVE-2023-26009 was published May 17, 2024
Improper Privilege Management vulnerability in WhatArmy WatchTowerHQ allows Privilege Escalation... Critical Unreviewed
CVE-2023-25701 was published May 17, 2024
Privilege Escalation in kubevirt Critical
CVE-2020-14316 was published for kubevirt.io/kubevirt (Go) Apr 24, 2024
Improper Privilege Management vulnerability in Jacques Malgrange Rencontre – Dating Site allows... Critical Unreviewed
CVE-2023-51425 was published Apr 24, 2024
In Blue Planet® products through 22.12, a misconfiguration in the SAML implementation allows... Critical Unreviewed
CVE-2024-2005 was published Mar 6, 2024
HashiCorp Vault Improper Privilege Management Critical
CVE-2020-10661 was published for github.com/hashicorp/vault/vault (Go) Jan 30, 2024
An issue in Projectworlds Vistor Management Systemin PHP v.1.0 allows a remtoe attacker to... Critical Unreviewed
CVE-2024-22922 was published Jan 26, 2024
Arbitrary remote code execution within `wrangler dev` Workers sandbox Critical
CVE-2023-7080 was published for wrangler (npm) Jan 3, 2024
Lekensteyn
 In checkDebuggingDisallowed of DeviceVersionFragment.java, there is a     possible way to access... Critical Unreviewed
CVE-2023-48418 was published Jan 3, 2024
An attacker in the wifi vicinity of a target Google Home can spy on the victim, resulting in... Critical Unreviewed
CVE-2023-48419 was published Jan 2, 2024
ProTip! Advisories are also available from the GraphQL API