GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,709
Composer 4,237
Erlang 31
GitHub Actions 21
Go 2,001
Maven 5,183
npm 3,713
NuGet 661
pip 3,384
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,517

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

700 advisories

Filter by severity

Sort by

Least recently updated

Zohocorp ManageEngine Endpoint Central affected by Incorrect authorization vulnerability while... High Unreviewed

CVE-2024-38868 was published Aug 30, 2024

An issue was discovered in Italtel Embrace 1.6.4. The web application inserts the access token of... High Unreviewed

CVE-2024-31842 was published Aug 20, 2024

Incorrect Authorization vulnerability in Bit Apps Bit Form Pro bitformpro allows Accessing... High Unreviewed

CVE-2024-43250 was published Aug 19, 2024

Incorrect Authorization vulnerability in WPWeb Docket (WooCommerce Collections / Wishlist /... High Unreviewed

CVE-2024-43131 was published Aug 13, 2024

A vulnerability has been identified in SINEC NMS (All versions < V3.0). The affected application... High Unreviewed

CVE-2024-41939 was published Aug 13, 2024

Logical vulnerability in the mobile application (com.transsion.carlcare) may lead to user... High Unreviewed

CVE-2024-7697 was published Aug 12, 2024

Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy... High Unreviewed

CVE-2024-7266 was published Aug 7, 2024

Incorrect User Management vulnerability in Naukowa i Akademicka Sieć Komputerowa - Państwowy... High Unreviewed

CVE-2024-7265 was published Aug 7, 2024

CloudStack account-users by default use username and password based authentication for API and UI... High Unreviewed

CVE-2024-42062 was published Aug 7, 2024

Incorrect Authorization vulnerability in Apache OFBiz. This issue affects Apache OFBiz: through... High Unreviewed

CVE-2024-38856 was published Aug 5, 2024

AdTran SRG 834-5 HDC17600021F1 devices (with SmartOS 11.1.1.1 and fixed in Version 12.1.3.1) have... High Unreviewed

CVE-2024-31970 was published Jul 24, 2024

Improper authorization in global search in GitLab EE affecting all versions from 16.11 prior to... High Unreviewed

CVE-2024-6323 was published Jun 27, 2024

IBM Storage Protect for Virtual Environments: Data Protection for VMware 8.1.0.0 through 8.1.22.0... High Unreviewed

CVE-2024-38329 was published Jun 19, 2024

A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos... High Unreviewed

CVE-2024-2698 was published Jun 12, 2024

This issue was addressed with improved permissions checking. This issue is fixed in macOS Sonoma... High Unreviewed

CVE-2024-27848 was published Jun 10, 2024

An Incorrect Authorization vulnerability exists in lunary-ai/lunary versions up to and including... High Unreviewed

CVE-2024-5130 was published Jun 6, 2024

The Login/Signup Popup ( Inline Form + Woocommerce ) plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-5324 was published Jun 6, 2024

Zoho ManageEngine PAM360 version 6601 is vulnerable to authorization vulnerability which allows a... High Unreviewed

CVE-2024-27312 was published May 20, 2024

MSI Afterburner v4.6.6.16381 Beta 3 is vulnerable to an ACL Bypass vulnerability in the RTCore64... High Unreviewed

CVE-2024-3745 was published May 18, 2024

A vulnerability exists in the web-authentication component of the SDM600. If exploited an... High Unreviewed

CVE-2024-2378 was published Apr 30, 2024

An Insecure Direct Object Reference (IDOR) vulnerability exists in the lunary-ai/lunary... High Unreviewed

CVE-2024-1625 was published Apr 10, 2024

Incorrect Authorization vulnerability in OpenText™ ZENworks Configuration Management (ZCM) allows... High Unreviewed

CVE-2023-6400 was published Mar 27, 2024

Improper access control in PAM JIT elevation in Devolutions Server 2024.1.6 and earlier allows an... High Unreviewed

CVE-2024-2915 was published Mar 26, 2024

Broken access control in the component /admin/management/users of School Fees Management System... High Unreviewed

CVE-2023-49982 was published Mar 21, 2024

An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to... High Unreviewed

CVE-2024-0199 was published Mar 7, 2024

Previous 1 2 3 4 5 … 27 28 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

700 advisories