Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

670 advisories

Loading
In version 1.2.7 of lunary-ai/lunary, any authenticated user, regardless of their role, can... Moderate Unreviewed
CVE-2024-6086 was published Jun 27, 2024
Improper Access Control vulnerability in Talya Informatics Travel APPS allows Exploiting... Moderate Unreviewed
CVE-2024-1153 was published Jun 27, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.11... Moderate Unreviewed
CVE-2024-2191 was published Jun 27, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.10 prior to 16.11... Moderate Unreviewed
CVE-2024-5430 was published Jun 27, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28966 was published Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28968 was published Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28969 was published Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28967 was published Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the... Moderate Unreviewed
CVE-2024-28965 was published Jun 13, 2024
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an... Moderate Unreviewed
CVE-2024-34107 was published Jun 13, 2024
Visual Studio Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-29060 was published Jun 11, 2024
In gaizhenbiao/chuanhuchatgpt, specifically the version tagged as 20240121, there exists a... Moderate Unreviewed
CVE-2024-3404 was published Jun 6, 2024
In lunary-ai/lunary version 1.2.5, an improper access control vulnerability exists due to a... Moderate Unreviewed
CVE-2024-5248 was published Jun 6, 2024
In lunary-ai/lunary versions 1.2.2 through 1.2.25, an improper access control vulnerability... Moderate Unreviewed
CVE-2024-5127 was published Jun 6, 2024
A vulnerability in the file policy feature that is used to inspect encrypted archive files of... Moderate Unreviewed
CVE-2024-20261 was published May 22, 2024
Improper access control in some Intel(R) Ethernet Controller Administrative Tools software before... Moderate Unreviewed
CVE-2024-21828 was published May 16, 2024
Improper access control for some Intel(R) Wireless Bluetooth products for Windows before version... Moderate Unreviewed
CVE-2023-47859 was published May 16, 2024
Improper access control in some Intel(R) CST before version 2.1.10300 may allow an authenticated... Moderate Unreviewed
CVE-2023-43487 was published May 16, 2024
Improper access control for some Intel(R) CST software before version 2.1.10300 may allow an... Moderate Unreviewed
CVE-2023-39433 was published May 16, 2024
Microsoft Intune for Android Mobile Application Management Tampering Vulnerability Moderate Unreviewed
CVE-2024-30059 was published May 14, 2024
A vulnerability has been identified in Polarion ALM (All versions < V2404.0). The Apache Lucene... Moderate Unreviewed
CVE-2024-33647 was published May 14, 2024
Dell OpenManage Enterprise, versions 3.10 and 4.0, contains an Improper Access Control... Moderate Unreviewed
CVE-2024-28978 was published May 1, 2024
The entire parent directory - C:\ScadaPro and its sub-directories and files are configured by... Moderate Unreviewed
CVE-2024-3746 was published Apr 30, 2024
An information disclosure vulnerability exists in the web interface /cgi-bin/debug_dump.cgi... Moderate Unreviewed
CVE-2023-43491 was published Apr 17, 2024
An information disclosure vulnerability exists in the web interface /cgi-bin/download_config.cgi... Moderate Unreviewed
CVE-2023-45209 was published Apr 17, 2024
ProTip! Advisories are also available from the GraphQL API