GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
852 advisories
Filter by severity
An issue was discovered in GitLab CE/EE affecting all versions from 16.9.8 before 17.4.5, 17.5...
Moderate
Unreviewed
CVE-2024-11669
was published
Nov 26, 2024
Incorrect authorization in the permission validation component of Devolutions Remote Desktop...
Moderate
Unreviewed
CVE-2024-11670
was published
Nov 25, 2024
Incorrect authorization in the add permission component in Devolutions Remote Desktop Manager...
Moderate
Unreviewed
CVE-2024-11672
was published
Nov 25, 2024
baltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User...
Moderate
Unreviewed
CVE-2024-45877
was published
Nov 13, 2024
An Improper Authorization (Access Control Misconfiguration) vulnerability in MGT-COMMERCE GmbH v2...
Moderate
Unreviewed
CVE-2024-44765
was published
Nov 8, 2024
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20537
was published
Nov 6, 2024
Incorrect Authorization vulnerability in WPChill Htaccess File Editor allows Accessing...
Moderate
Unreviewed
CVE-2024-49256
was published
Nov 1, 2024
Sysmac Studio provided by OMRON Corporation contains an incorrect authorization vulnerability. If...
Moderate
Unreviewed
CVE-2024-49501
was published
Nov 1, 2024
Incorrect Authorization vulnerability in Wpsoul Greenshift – animation and page builder blocks...
Moderate
Unreviewed
CVE-2024-50419
was published
Oct 30, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44301
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44137
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44253
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44287
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44247
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-40855
was published
Oct 28, 2024
The Chef Habitat builder-api on-prem-builder package with any version lower than habitat/builder...
Moderate
Unreviewed
CVE-2024-9825
was published
Oct 28, 2024
SchedMD Slurm before 24.05.4 has Incorrect Authorization. A mistake in authentication handling in...
Moderate
Unreviewed
CVE-2024-48936
was published
Oct 28, 2024
In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error...
Moderate
Unreviewed
CVE-2024-47025
was published
Oct 25, 2024
There is a possible Local bypass of user interaction due to an insecure default value. This could...
Moderate
Unreviewed
CVE-2024-44099
was published
Oct 25, 2024
A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause...
Moderate
Unreviewed
CVE-2024-10295
was published
Oct 24, 2024
Incorrect access control in XIAO HE Smart 4.3.1 allows attackers to access sensitive information...
Moderate
Unreviewed
CVE-2024-48540
was published
Oct 24, 2024
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ...
Moderate
Unreviewed
CVE-2024-20482
was published
Oct 23, 2024
Archer Platform 2024.03 before version 2024.09 is affected by an API authorization bypass...
Moderate
Unreviewed
CVE-2024-49209
was published
Oct 22, 2024
Archer Platform 2024.03 before version 2024.08 is affected by an authorization bypass...
Moderate
Unreviewed
CVE-2024-49208
was published
Oct 22, 2024
A vulnerability has been found in didi DDMQ 1.0 and classified as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-10173
was published
Oct 20, 2024
ProTip!
Advisories are also available from the
GraphQL API