GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,944
Composer 4,273
Erlang 31
GitHub Actions 21
Go 2,055
Maven 5,234
npm 3,739
NuGet 668
pip 3,417
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,528

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,035 advisories

Filter by severity

Sort by

Least recently updated

An issue in OWASP DefectDojo before v.1.5.3.1 allows a remote attacker to escalate privileges via... High Unreviewed

CVE-2023-48171 was published Aug 12, 2024

An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The zmmailboxdmgr binary, a... High Unreviewed

CVE-2024-27442 was published Aug 12, 2024

There is a permission and access control vulnerability of ZTE's ZXV10 XT802/ET301 product... High Unreviewed

CVE-2024-22069 was published Aug 8, 2024

Nagios NDOUtils before 2.1.4 allows privilege escalation from nagios to root because certain... High Unreviewed

CVE-2024-43199 was published Aug 7, 2024

The JetFormBuilder plugin for WordPress is vulnerable to privilege escalation in all versions up... High Unreviewed

CVE-2024-7291 was published Aug 3, 2024

Insecure Permission vulnerability in Cosy+ devices running a firmware 21.x below 21.2s10 or a... High Unreviewed

CVE-2024-33894 was published Aug 2, 2024

Improper Privilege Management vulnerability in IdeaBox PowerPack Pro for Elementor allows... High Unreviewed

CVE-2024-39634 was published Aug 1, 2024

Improper Privilege Management vulnerability in IdeaBox PowerPack for Beaver Builder allows... High Unreviewed

CVE-2024-39633 was published Aug 1, 2024

Improper Privilege Management vulnerability in WPForms, LLC. WPForms User Registration allows... High Unreviewed

CVE-2023-52209 was published Aug 1, 2024

Improper Privilege Management vulnerability in WebAppick CTX Feed allows Privilege Escalation... High Unreviewed

CVE-2024-38775 was published Aug 1, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS... High Unreviewed

CVE-2024-40802 was published Jul 30, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS... High Unreviewed

CVE-2024-40781 was published Jul 30, 2024

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6... High Unreviewed

CVE-2024-27826 was published Jul 30, 2024

The MSI installer for Splashtop Streamer for Windows before 3.7.0.0 uses a temporary folder with... High Unreviewed

CVE-2024-42050 was published Jul 28, 2024

Insecure Permissions vulnerability in Deepin dde-file-manager 6.0.54 and earlier allows... High Unreviewed

CVE-2023-50700 was published Jul 26, 2024

AdvaBuild uses a command queue to launch certain operations. An attacker who gains access to the... High Unreviewed

CVE-2020-11640 was published Jul 23, 2024

Improper Privilege Management vulnerability in IqbalRony WP User Switch allows Privilege... High Unreviewed

CVE-2024-37560 was published Jul 12, 2024

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix... High Unreviewed

CVE-2024-6286 was published Jul 10, 2024

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual... High Unreviewed

CVE-2024-6151 was published Jul 10, 2024

Vulnerability in Jaspersoft JasperReport Servers.This issue affects JasperReport Servers: from 8... High Unreviewed

CVE-2024-3325 was published Jul 10, 2024

In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due... High Unreviewed

CVE-2024-34725 was published Jul 9, 2024

In availableToWriteBytes of MessageQueueBase.h, there is a possible out of bounds write due to an... High Unreviewed

CVE-2024-31313 was published Jul 9, 2024

In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without... High Unreviewed

CVE-2024-31318 was published Jul 9, 2024

In onCreate of multiple files, there is a possible way to trick the user into granting health... High Unreviewed

CVE-2024-31323 was published Jul 9, 2024

In setSkipPrompt of AssociationRequest.java , there is a possible way to establish a companion... High Unreviewed

CVE-2024-31320 was published Jul 9, 2024

Previous 1 2 3 4 5 … 81 82 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,035 advisories