GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,035 advisories
Filter by severity
An execution with unnecessary privileges vulnerability in the VCM engine of FortiClient for Linux...
High
Unreviewed
CVE-2020-15934
was published
Dec 19, 2024
CA Client Automation (ITCM) allows non-admin/non-root users to encrypt a string using CAF CLI and...
High
Unreviewed
CVE-2024-38499
was published
Dec 17, 2024
The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to privilege escalation in...
High
Unreviewed
CVE-2024-11721
was published
Dec 14, 2024
An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated...
High
Unreviewed
CVE-2024-49035
was published
Nov 26, 2024
A script injection vulnerability was identified in the Tuned package. The `instance_create()` D...
High
Unreviewed
CVE-2024-52336
was published
Nov 26, 2024
The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to privilege...
High
Unreviewed
CVE-2024-9941
was published
Nov 23, 2024
Delinea Privilege Manager before 12.0.2 mishandles the security of the Windows agent.
High
Unreviewed
CVE-2024-52926
was published
Nov 18, 2024
The WordPress Video Robot - The Ultimate Video Importer plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-9192
was published
Nov 16, 2024
A maliciously crafted DLL file when placed in temporary files and folders that are leveraged by...
High
Unreviewed
CVE-2024-9500
was published
Nov 16, 2024
Unauthorized access vulnerability in the mobile application (com.transsion.phoenix) can lead to...
High
Unreviewed
CVE-2024-11206
was published
Nov 14, 2024
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an...
High
Unreviewed
CVE-2024-49558
was published
Nov 12, 2024
Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege...
High
Unreviewed
CVE-2024-24409
was published
Nov 8, 2024
A GitHub App installed in organizations could upgrade some permissions from read to write access...
High
Unreviewed
CVE-2024-8810
was published
Nov 8, 2024
Improper Privilege Management vulnerability in WatchGuard EPDR, Panda AD360 and Panda Dome on...
High
Unreviewed
CVE-2024-8424
was published
Nov 8, 2024
Zohocorp ManageEngine EndPoint Central versions 11.3.2416.21 and below, 11.3.2428.9 and below are...
High
Unreviewed
CVE-2024-10203
was published
Nov 7, 2024
An IDOR vulnerability exists in the 'Evaluations' function of the 'umgws datasets' section in...
High
Unreviewed
CVE-2024-7473
was published
Oct 29, 2024
CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized
access,...
High
Unreviewed
CVE-2024-9002
was published
Oct 11, 2024
An issue was discovered in Infinera hiT 7300 5.60.50. Undocumented privileged functions in the ...
High
Unreviewed
CVE-2024-28813
was published
Sep 30, 2024
An issue in the TP-Link MQTT Broker and API gateway of TP-Link Kasa KP125M v1.0.3 allows...
High
Unreviewed
CVE-2024-46549
was published
Sep 30, 2024
OpenSlides 4.0.15 verifies passwords by comparing password hashes using a function with content...
High
Unreviewed
CVE-2024-22893
was published
Sep 25, 2024
Once logged in to ProGauge MAGLINK LX4 CONSOLE, a valid user can change their privileges to...
High
Unreviewed
CVE-2024-45373
was published
Sep 25, 2024
A symlink following vulnerability in the pouch cp function of AliyunContainerService pouch v1.3.1...
High
Unreviewed
CVE-2024-41228
was published
Sep 23, 2024
logiops through 0.3.4, in its default configuration, allows any unprivileged user to configure...
High
Unreviewed
CVE-2024-45752
was published
Sep 19, 2024
This issue was addressed through improved state management. This issue is fixed in iOS 18 and...
High
Unreviewed
CVE-2024-44147
was published
Sep 17, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An app may...
High
Unreviewed
CVE-2024-40861
was published
Sep 17, 2024
ProTip!
Advisories are also available from the
GraphQL API