GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
843 advisories
Filter by severity
PIX-LINK LV-WR22 RE3002-P1-01_V117.0 is vulnerable to Improper Access Control. The TELNET service...
High
Unreviewed
CVE-2024-46280
was published
Sep 30, 2024
A broken access control vulnerability in the KillDupUsr_func function of spx_restservice allows...
High
Unreviewed
CVE-2021-44467
was published
Oct 24, 2022
In SAP Commerce Cloud - versions HY_COM 1905, HY_COM 2005, HY_COM2105, HY_COM 2011, HY_COM 2205,...
High
Unreviewed
CVE-2023-42481
was published
Dec 12, 2023
When creating a journal entry template in SAP S/4HANA (Manage Journal Entry Template) - versions...
High
Unreviewed
CVE-2023-35870
was published
Jul 11, 2023
TestLink 1.9.20 is vulnerable to Incorrect Access Control in the TestPlan editing section. When a...
High
Unreviewed
CVE-2024-46097
was published
Sep 27, 2024
Improper access control in Zoom Mobile App for iOS and Zoom SDKs for iOS before version 5.16.5...
High
Unreviewed
CVE-2023-43585
was published
Dec 14, 2023
A host header injection vulnerability in scheduleR v0.0.18 allows attackers to obtain the...
High
Unreviewed
CVE-2024-45982
was published
Sep 26, 2024
An information disclosure vulnerability in the /Letter/PrintQr/ endpoint of Solvait v24.4.2...
High
Unreviewed
CVE-2024-44860
was published
Sep 26, 2024
An issue in Foxit Software Foxit PDF Reader v.2024.2.2.25170 allows a local attacker to execute...
High
Unreviewed
CVE-2024-41605
was published
Sep 26, 2024
netentsec NS-ASG 6.3 is vulnerable to Incorrect Access Control. There is a file leak in the...
High
Unreviewed
CVE-2023-40850
was published
Sep 13, 2023
A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos...
High
Unreviewed
CVE-2024-2698
was published
Jun 12, 2024
Incorrect access control in IceCMS v3.4.7 and before allows attackers to authenticate by entering...
High
Unreviewed
CVE-2024-46607
was published
Sep 25, 2024
An access control issue in the CheckVip function in UserController.java of IceCMS v3.4.7 and...
High
Unreviewed
CVE-2024-46609
was published
Sep 25, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)....
High
Unreviewed
CVE-2022-39421
was published
Oct 19, 2022
Vulnerability in the Oracle Sales for Handhelds product of Oracle E-Business Suite (component:...
High
Unreviewed
CVE-2023-21855
was published
Jan 18, 2023
Vulnerability in the PeopleSoft Enterprise Common Components product of Oracle PeopleSoft ...
High
Unreviewed
CVE-2022-39406
was published
Oct 19, 2022
Improper access control in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom...
High
Unreviewed
CVE-2023-49647
was published
Jan 13, 2024
Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5...
High
Unreviewed
CVE-2024-24693
was published
Mar 13, 2024
Improper access control in Zoom Rooms before version 5.15.0 may allow an authenticated user to...
High
Unreviewed
CVE-2023-36538
was published
Jul 11, 2023
If Security Hardening guide rules are not followed, then Nokia WaveLite products allow a local...
High
Unreviewed
CVE-2023-22618
was published
Oct 4, 2023
Zoom VDI client installer prior to 5.14.0 contains an improper access control vulnerability. A...
High
Unreviewed
CVE-2023-28603
was published
Jun 13, 2023
Microsoft Office Visio Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38016
was published
Sep 19, 2024
Improper access control in PAM propagation scripts in Devolutions Server 2023.2.8.0 and ealier...
High
Unreviewed
CVE-2023-5240
was published
Oct 13, 2023
Sangoma Technologies FreePBX before cdr 15.0.18, 16.0.40, 15.0.16, and 16.0.17 was discovered to...
High
Unreviewed
CVE-2023-43336
was published
Nov 2, 2023
Vulnerability in the Oracle HCM Common Architecture product of Oracle E-Business Suite (component...
High
Unreviewed
CVE-2023-21857
was published
Jan 18, 2023
ProTip!
Advisories are also available from the
GraphQL API