Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

852 advisories

Loading
An issue was discovered in GitLab CE/EE affecting all versions from 16.9.8 before 17.4.5, 17.5... Moderate Unreviewed
CVE-2024-11669 was published Nov 26, 2024
Incorrect authorization in the permission validation component of Devolutions Remote Desktop... Moderate Unreviewed
CVE-2024-11670 was published Nov 25, 2024
Incorrect authorization in the add permission component in Devolutions Remote Desktop Manager... Moderate Unreviewed
CVE-2024-11672 was published Nov 25, 2024
baltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User... Moderate Unreviewed
CVE-2024-45877 was published Nov 13, 2024
An Improper Authorization (Access Control Misconfiguration) vulnerability in MGT-COMMERCE GmbH v2... Moderate Unreviewed
CVE-2024-44765 was published Nov 8, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,... Moderate Unreviewed
CVE-2024-20537 was published Nov 6, 2024
Incorrect Authorization vulnerability in WPChill Htaccess File Editor allows Accessing... Moderate Unreviewed
CVE-2024-49256 was published Nov 1, 2024
Sysmac Studio provided by OMRON Corporation contains an incorrect authorization vulnerability. If... Moderate Unreviewed
CVE-2024-49501 was published Nov 1, 2024
Incorrect Authorization vulnerability in Wpsoul Greenshift – animation and page builder blocks... Moderate Unreviewed
CVE-2024-50419 was published Oct 30, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Moderate Unreviewed
CVE-2024-44301 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Moderate Unreviewed
CVE-2024-44247 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Moderate Unreviewed
CVE-2024-44287 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Moderate Unreviewed
CVE-2024-44253 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Moderate Unreviewed
CVE-2024-44137 was published Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS... Moderate Unreviewed
CVE-2024-40855 was published Oct 28, 2024
The Chef Habitat builder-api on-prem-builder package  with any version lower than habitat/builder... Moderate Unreviewed
CVE-2024-9825 was published Oct 28, 2024
SchedMD Slurm before 24.05.4 has Incorrect Authorization. A mistake in authentication handling in... Moderate Unreviewed
CVE-2024-48936 was published Oct 28, 2024
In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error... Moderate Unreviewed
CVE-2024-47025 was published Oct 25, 2024
There is a possible Local bypass of user interaction due to an insecure default value. This could... Moderate Unreviewed
CVE-2024-44099 was published Oct 25, 2024
A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause... Moderate Unreviewed
CVE-2024-10295 was published Oct 24, 2024
Incorrect access control in XIAO HE Smart 4.3.1 allows attackers to access sensitive information... Moderate Unreviewed
CVE-2024-48540 was published Oct 24, 2024
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ... Moderate Unreviewed
CVE-2024-20482 was published Oct 23, 2024
Archer Platform 2024.03 before version 2024.09 is affected by an API authorization bypass... Moderate Unreviewed
CVE-2024-49209 was published Oct 22, 2024
Archer Platform 2024.03 before version 2024.08 is affected by an authorization bypass... Moderate Unreviewed
CVE-2024-49208 was published Oct 22, 2024
A vulnerability has been found in didi DDMQ 1.0 and classified as critical. Affected by this... Moderate Unreviewed
CVE-2024-10173 was published Oct 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database