GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
3,378 advisories
Filter by severity
An issue in the component /jeecg-boot/jmreport/dict/list of JimuReport v1.7.8 allows attacker to...
Critical
Unreviewed
CVE-2024-44893
was published
Sep 10, 2024
Microsoft SQL Server Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-37980
was published
Sep 10, 2024
Windows Installer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-38014
was published
Sep 10, 2024
Dell PowerScale InsightIQ, version 5.1, contain an Improper Privilege Management vulnerability. A...
Moderate
Unreviewed
CVE-2024-39574
was published
Sep 10, 2024
External Secrets Operator vulnerable to privilege escalation
High
CVE-2024-45041
was published
for
github.com/external-secrets/external-secrets
(Go)
Sep 9, 2024
The WPCOM Member plugin for WordPress is vulnerable to privilege escalation in all versions up to...
Critical
Unreviewed
CVE-2024-7493
was published
Sep 6, 2024
The Newsletters plugin for WordPress is vulnerable to privilege escalation in all versions up to,...
High
Unreviewed
CVE-2024-8247
was published
Sep 6, 2024
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper privilege...
High
Unreviewed
CVE-2024-45173
was published
Sep 5, 2024
Improper Privilege Management vulnerability in SAMPA? Holding AKOS allows Collect Data as...
Moderate
Unreviewed
CVE-2024-4259
was published
Sep 3, 2024
Improper Privilege Management vulnerability in Menulux Information Technologies Managment Portal...
Moderate
Unreviewed
CVE-2024-4428
was published
Aug 29, 2024
Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account...
High
Unreviewed
CVE-2024-4555
was published
Aug 28, 2024
An Incorrect Access Control vulnerability was found in /admin/delete_room.php in Kashipara Hotel...
High
Unreviewed
CVE-2024-42774
was published
Aug 22, 2024
Swissphone DiCal-RED 4009 devices allow a remote attacker to gain access to the administrative...
Critical
Unreviewed
CVE-2024-36439
was published
Aug 22, 2024
The DXE module SmmComputrace contains a vulnerability that allows local attackers to leak stack...
High
Unreviewed
CVE-2024-33656
was published
Aug 21, 2024
A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful...
High
Unreviewed
CVE-2020-11846
was published
Aug 21, 2024
Dell Repository Manager version 3.4.2 and earlier, contain a Local Privilege Escalation...
High
Unreviewed
CVE-2023-22576
was published
Aug 21, 2024
Withdrawn Advisory: Kanister vulnerable to cluster-level privilege escalation
Moderate
CVE-2024-43403
was published
for
github.com/kanisterio/kanister
(Go)
Aug 20, 2024
•
withdrawn
Keyfactor Command 10.5.x before 10.5.1 and 11.5.x before 11.5.1 allows SQL Injection which could...
Critical
Unreviewed
CVE-2024-33872
was published
Aug 20, 2024
In XWiki Platform, payloads stored in content is executed when a user with script/programming right edit them
Critical
CVE-2024-43401
was published
for
org.xwiki.platform:xwiki-platform-web-templates
(Maven)
Aug 19, 2024
Improper Privilege Management vulnerability in Geek Code Lab Login As Users allows Privilege...
Critical
Unreviewed
CVE-2024-43311
was published
Aug 19, 2024
Improper Privilege Management vulnerability in azzaroco Ultimate Membership Pro allows Privilege...
Critical
Unreviewed
CVE-2024-43240
was published
Aug 19, 2024
Improper Privilege Management vulnerability in eyecix JobSearch allows Privilege Escalation.This...
Critical
Unreviewed
CVE-2024-43245
was published
Aug 19, 2024
Microcks's POST /api/import and POST /api/export endpoints allow non-administrator access
High
CVE-2024-44076
was published
for
io.github.microcks:microcks-app
(Maven)
Aug 19, 2024
VTiger CRM <= 8.1.0 does not correctly check user privileges. A low-privileged user can interact...
High
Unreviewed
CVE-2024-42995
was published
Aug 16, 2024
In setForceHideNonSystemOverlayWindowIfNeeded of WindowState.java, there is a possible way for...
High
Unreviewed
CVE-2024-34741
was published
Aug 16, 2024
ProTip!
Advisories are also available from the
GraphQL API