GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,070
Composer 4,319
Erlang 31
GitHub Actions 21
Go 2,077
Maven 5,250
npm 3,746
NuGet 674
pip 3,435
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,267

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

857 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker... Moderate Unreviewed

CVE-2024-20343 was published Sep 11, 2024

An improper access control vulnerability [CWE-284] in FortiEDR Manager API 6.2.0 through 6.2.2, 6... Moderate Unreviewed

CVE-2024-45323 was published Sep 10, 2024

A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All... Moderate Unreviewed

CVE-2024-37993 was published Sep 10, 2024

Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains an Improper Access Control... Moderate Unreviewed

CVE-2024-39580 was published Sep 10, 2024

A vulnerability has been identified in Node.js version 20, affecting users of the experimental... Moderate Unreviewed

CVE-2023-30582 was published Sep 7, 2024

An issue in the component EXR!ReadEXR+0x40ef1 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed

CVE-2024-44913 was published Aug 28, 2024

An issue in the component EXR!ReadEXR+0x3df50 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed

CVE-2024-44914 was published Aug 28, 2024

An issue in the component EXR!ReadEXR+0x4eef0 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed

CVE-2024-44915 was published Aug 28, 2024

A vulnerability in the restricted security domain implementation of Cisco Application Policy... Moderate Unreviewed

CVE-2024-20279 was published Aug 28, 2024

A vulnerability, which was classified as critical, has been found in nafisulbari/itsourcecode... Moderate Unreviewed

CVE-2024-8216 was published Aug 27, 2024

A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a... Moderate Unreviewed

CVE-2024-5814 was published Aug 27, 2024

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via ... Moderate Unreviewed

CVE-2024-42766 was published Aug 23, 2024

Swissphone DiCal-RED 4009 devices allow an unauthenticated attacker use a port-2101 TCP... Moderate Unreviewed

CVE-2024-36441 was published Aug 22, 2024

An issue has been discovered in GitLab EE affecting all versions starting from 12.5 before 17.1.6... Moderate Unreviewed

CVE-2024-3127 was published Aug 22, 2024

Mattermost versions 9.5.x <= 9.5.7, 9.10.x <= 9.10.0 fail to enforce proper access controls which... Moderate Unreviewed

CVE-2024-43813 was published Aug 22, 2024

A vulnerability has been found in Anhui Deshun Intelligent Technology Jieshun JieLink+ JSOTC2016... Moderate Unreviewed

CVE-2024-7921 was published Aug 19, 2024

A vulnerability, which was classified as critical, has been found in Anhui Deshun Intelligent... Moderate Unreviewed

CVE-2024-7919 was published Aug 19, 2024

A vulnerability, which was classified as problematic, was found in Anhui Deshun Intelligent... Moderate Unreviewed

CVE-2024-7920 was published Aug 19, 2024

Improper access control in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31... Moderate Unreviewed

CVE-2024-28050 was published Aug 14, 2024

Improper access control for some Intel(R) CIP software before version 2.4.10717 may allow an... Moderate Unreviewed

CVE-2023-43489 was published Aug 14, 2024

Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an... Moderate Unreviewed

CVE-2024-39414 was published Aug 14, 2024

Windows Initial Machine Configuration Elevation of Privilege Vulnerability Moderate Unreviewed

CVE-2024-38223 was published Aug 13, 2024

An improper access control vulnerability [CWE-284] in FortiOS 7.4.0 through 7.4.3, 7.2.5 through... Moderate Unreviewed

CVE-2024-36505 was published Aug 13, 2024

SAP NetWeaver Application Server ABAP allows an unauthenticated attacker to craft a URL link... Moderate Unreviewed

CVE-2024-41732 was published Aug 13, 2024

SourceCodester Best House Rental Management System v1.0 is vulnerable to Incorrect Access Control... Moderate Unreviewed

CVE-2024-40475 was published Aug 12, 2024

Previous 1 2 3 4 5 6 7 … 34 35 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

857 advisories