GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,037 advisories
Filter by severity
An improper authorization vulnerability exists where an authenticated,
low privileged remote...
Moderate
Unreviewed
CVE-2023-3253
was published
Aug 29, 2023
The Chef Habitat builder-api on-prem-builder package with any version lower than habitat/builder...
Moderate
Unreviewed
CVE-2024-9825
was published
Oct 28, 2024
An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. An attacker within RF range can...
Moderate
Unreviewed
CVE-2023-35836
was published
Jan 24, 2024
OpenNMS privilege escalation vulnerability
Moderate
CVE-2023-40315
was published
for
org.opennms:opennms-webapp-rest
(Maven)
Aug 17, 2023
The Bookster WordPress plugin through 1.1.0 allows adding sensitive parameters when validating...
Moderate
Unreviewed
CVE-2024-5071
was published
Jun 26, 2024
Affected versions of Atlassian Jira Service Management Server and Data Center allow remote...
Moderate
Unreviewed
CVE-2022-36800
was published
Aug 4, 2022
Inadequate validation of permissions when employing remote tools and
macros via the context...
Moderate
Unreviewed
CVE-2023-7047
was published
Dec 21, 2023
This issue was addressed with improved data protection. This issue is fixed in macOS Monterey 12...
Moderate
Unreviewed
CVE-2023-35983
was published
Jul 27, 2023
An authenticated vulnerability has been identified allowing an attacker to effectively establish...
Moderate
Unreviewed
CVE-2023-45626
was published
Nov 15, 2023
A non-admin user can cause short-term disruption in Target VM availability in Citrix Provisioning
Moderate
Unreviewed
CVE-2024-6150
was published
Jul 10, 2024
Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533...
Moderate
Unreviewed
CVE-2024-7004
was published
Aug 6, 2024
Missing permission check in Jenkins Dimensions Plugin allows enumerating credentials IDs
Moderate
CVE-2023-32261
was published
for
org.jenkins-ci.plugins:dimensionsscm
(Maven)
Jul 19, 2023
Incorrect Authorization vulnerability in Wpsoul Greenshift – animation and page builder blocks...
Moderate
Unreviewed
CVE-2024-50419
was published
Oct 30, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44247
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44137
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44301
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44253
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-40855
was published
Oct 28, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS...
Moderate
Unreviewed
CVE-2024-44287
was published
Oct 28, 2024
SchedMD Slurm before 24.05.4 has Incorrect Authorization. A mistake in authentication handling in...
Moderate
Unreviewed
CVE-2024-48936
was published
Oct 28, 2024
Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component:...
Moderate
Unreviewed
CVE-2024-21120
was published
Apr 17, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)...
Moderate
Unreviewed
CVE-2024-20466
was published
Aug 21, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone...
Moderate
Unreviewed
CVE-2024-20420
was published
Oct 16, 2024
Vulnerability in the PeopleSoft Enterprise FIN Expenses product of Oracle PeopleSoft (component:...
Moderate
Unreviewed
CVE-2024-21249
was published
Oct 15, 2024
Sysmac Studio provided by OMRON Corporation contains an incorrect authorization vulnerability. If...
Moderate
Unreviewed
CVE-2024-49501
was published
Nov 1, 2024
ProTip!
Advisories are also available from the
GraphQL API