GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,041 advisories
Filter by severity
moodle: IDOR in edit/delete RSS feed
Moderate
CVE-2024-48897
was published
for
moodle/moodle
(Composer)
Nov 18, 2024
moodle: IDOR when fetching report schedules
Moderate
CVE-2024-48901
was published
for
moodle/moodle
(Composer)
Nov 18, 2024
An Improper Authorization (Access Control Misconfiguration) vulnerability in MGT-COMMERCE GmbH v2...
Moderate
Unreviewed
CVE-2024-44765
was published
Nov 8, 2024
Hashicorp Nomad Incorrect Authorization vulnerability
Moderate
CVE-2024-10975
was published
for
github.com/hashicorp/nomad
(Go)
Nov 7, 2024
Moodle's IDOR in Feedback non-respondents report allows messaging arbitrary site users
Moderate
CVE-2024-43438
was published
for
moodle/moodle
(Composer)
Nov 7, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20537
was published
Nov 6, 2024
ansible-core Incorrect Authorization vulnerability
Moderate
CVE-2024-9902
was published
for
ansible-core
(pip)
Nov 6, 2024
Incorrect Authorization vulnerability in WPChill Htaccess File Editor allows Accessing...
Moderate
Unreviewed
CVE-2024-49256
was published
Nov 1, 2024
Sysmac Studio provided by OMRON Corporation contains an incorrect authorization vulnerability. If...
Moderate
Unreviewed
CVE-2024-49501
was published
Nov 1, 2024
Incorrect Authorization vulnerability in Wpsoul Greenshift – animation and page builder blocks...
Moderate
Unreviewed
CVE-2024-50419
was published
Oct 30, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44301
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44287
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44137
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44253
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44247
was published
Oct 28, 2024
The Chef Habitat builder-api on-prem-builder package with any version lower than habitat/builder...
Moderate
Unreviewed
CVE-2024-9825
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-40855
was published
Oct 28, 2024
SchedMD Slurm before 24.05.4 has Incorrect Authorization. A mistake in authentication handling in...
Moderate
Unreviewed
CVE-2024-48936
was published
Oct 28, 2024
In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error...
Moderate
Unreviewed
CVE-2024-47025
was published
Oct 25, 2024
There is a possible Local bypass of user interaction due to an insecure default value. This could...
Moderate
Unreviewed
CVE-2024-44099
was published
Oct 25, 2024
A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause...
Moderate
Unreviewed
CVE-2024-10295
was published
Oct 24, 2024
Incorrect access control in XIAO HE Smart 4.3.1 allows attackers to access sensitive information...
Moderate
Unreviewed
CVE-2024-48540
was published
Oct 24, 2024
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ...
Moderate
Unreviewed
CVE-2024-20482
was published
Oct 23, 2024
Archer Platform 2024.03 before version 2024.09 is affected by an API authorization bypass...
Moderate
Unreviewed
CVE-2024-49209
was published
Oct 22, 2024
Archer Platform 2024.03 before version 2024.08 is affected by an authorization bypass...
Moderate
Unreviewed
CVE-2024-49208
was published
Oct 22, 2024
ProTip!
Advisories are also available from the
GraphQL API