GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
670 advisories
Filter by severity
In version 1.2.7 of lunary-ai/lunary, any authenticated user, regardless of their role, can...
Moderate
Unreviewed
CVE-2024-6086
was published
Jun 27, 2024
Improper Access Control vulnerability in Talya Informatics Travel APPS allows Exploiting...
Moderate
Unreviewed
CVE-2024-1153
was published
Jun 27, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to 16.11...
Moderate
Unreviewed
CVE-2024-2191
was published
Jun 27, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.10 prior to 16.11...
Moderate
Unreviewed
CVE-2024-5430
was published
Jun 27, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28966
was published
Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28968
was published
Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28969
was published
Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28967
was published
Jun 13, 2024
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the...
Moderate
Unreviewed
CVE-2024-28965
was published
Jun 13, 2024
Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an...
Moderate
Unreviewed
CVE-2024-34107
was published
Jun 13, 2024
Visual Studio Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2024-29060
was published
Jun 11, 2024
In gaizhenbiao/chuanhuchatgpt, specifically the version tagged as 20240121, there exists a...
Moderate
Unreviewed
CVE-2024-3404
was published
Jun 6, 2024
In lunary-ai/lunary version 1.2.5, an improper access control vulnerability exists due to a...
Moderate
Unreviewed
CVE-2024-5248
was published
Jun 6, 2024
In lunary-ai/lunary versions 1.2.2 through 1.2.25, an improper access control vulnerability...
Moderate
Unreviewed
CVE-2024-5127
was published
Jun 6, 2024
A vulnerability in the file policy feature that is used to inspect encrypted archive files of...
Moderate
Unreviewed
CVE-2024-20261
was published
May 22, 2024
Improper access control in some Intel(R) Ethernet Controller Administrative Tools software before...
Moderate
Unreviewed
CVE-2024-21828
was published
May 16, 2024
Improper access control for some Intel(R) Wireless Bluetooth products for Windows before version...
Moderate
Unreviewed
CVE-2023-47859
was published
May 16, 2024
Improper access control in some Intel(R) CST before version 2.1.10300 may allow an authenticated...
Moderate
Unreviewed
CVE-2023-43487
was published
May 16, 2024
Improper access control for some Intel(R) CST software before version 2.1.10300 may allow an...
Moderate
Unreviewed
CVE-2023-39433
was published
May 16, 2024
Microsoft Intune for Android Mobile Application Management Tampering Vulnerability
Moderate
Unreviewed
CVE-2024-30059
was published
May 14, 2024
A vulnerability has been identified in Polarion ALM (All versions < V2404.0). The Apache Lucene...
Moderate
Unreviewed
CVE-2024-33647
was published
May 14, 2024
Dell OpenManage Enterprise, versions 3.10 and 4.0, contains an Improper Access Control...
Moderate
Unreviewed
CVE-2024-28978
was published
May 1, 2024
The entire parent directory - C:\ScadaPro and its sub-directories and
files are configured by...
Moderate
Unreviewed
CVE-2024-3746
was published
Apr 30, 2024
An information disclosure vulnerability exists in the web interface /cgi-bin/debug_dump.cgi...
Moderate
Unreviewed
CVE-2023-43491
was published
Apr 17, 2024
An information disclosure vulnerability exists in the web interface /cgi-bin/download_config.cgi...
Moderate
Unreviewed
CVE-2023-45209
was published
Apr 17, 2024
ProTip!
Advisories are also available from the
GraphQL API