GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
788 advisories
Filter by severity
IBM Security Access Manager Docker 10.0.0.0 through 10.0.7.1 could disclose sensitive information...
Moderate
Unreviewed
CVE-2023-38368
was published
Jun 27, 2024
The License Manager for WooCommerce plugin for WordPress is vulnerable to unauthorized access of...
Moderate
Unreviewed
CVE-2024-1639
was published
Jun 21, 2024
The Tickera – WordPress Event Ticketing plugin for WordPress is vulnerable to unauthorized loss...
Moderate
Unreviewed
CVE-2024-5860
was published
Jun 18, 2024
Acrobat Mobile Sign Android versions 24.4.2.33155 and earlier are affected by an Incorrect...
Moderate
Unreviewed
CVE-2024-34130
was published
Jun 13, 2024
Dell Client Platform contains an incorrect authorization vulnerability. An attacker with physical...
Moderate
Unreviewed
CVE-2024-0160
was published
Jun 12, 2024
Incorrect authorization vulnerability in Cybozu Garoon 5.0.0 to 6.0.0 allows a remote...
Moderate
Unreviewed
CVE-2024-31403
was published
Jun 11, 2024
Incorrect authorization vulnerability in Cybozu Garoon 5.0.0 to 5.15.2 allows a remote...
Moderate
Unreviewed
CVE-2024-31402
was published
Jun 11, 2024
An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6...
Moderate
Unreviewed
CVE-2024-23669
was published
Jun 5, 2024
Incorrect Authorization vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter ...
Moderate
Unreviewed
CVE-2024-34434
was published
May 17, 2024
Avast Premium Security Sandbox Protection Incorrect Authorization Privilege Escalation...
Moderate
Unreviewed
CVE-2023-42124
was published
May 3, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 before 16...
Moderate
Unreviewed
CVE-2024-4006
was published
Apr 25, 2024
Incorrect Authorization vulnerability in Supsystic Data Tables Generator.This issue affects Data...
Moderate
Unreviewed
CVE-2023-25043
was published
Apr 17, 2024
In JetBrains TeamCity before 2024.03 authenticated users without administrative permissions could...
Moderate
Unreviewed
CVE-2024-31134
was published
Mar 28, 2024
Improper authorization in the report management and creation module of BMC Control-M branches 9.0...
Moderate
Unreviewed
CVE-2024-1604
was published
Mar 18, 2024
A vulnerability has been identified in Siveillance Control (All versions >= V2.8 < V3.1.1). The...
Moderate
Unreviewed
CVE-2023-45793
was published
Mar 12, 2024
SAP Fiori Front End Server - version 605, allows altering of approver details on the read-only...
Moderate
Unreviewed
CVE-2024-22133
was published
Mar 12, 2024
In JetBrains YouTrack before 2024.1.25893 user without appropriate permissions could restore...
Moderate
Unreviewed
CVE-2024-28229
was published
Mar 7, 2024
A privilege escalation vulnerability was discovered in GitLab affecting versions 16.8 prior to 16...
Moderate
Unreviewed
CVE-2024-1299
was published
Mar 7, 2024
In JetBrains TeamCity before 2023.11.4 presigned URL generation requests in S3 Artifact Storage...
Moderate
Unreviewed
CVE-2024-28174
was published
Mar 6, 2024
IBM CP4BA - Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a user...
Moderate
Unreviewed
CVE-2023-47716
was published
Mar 1, 2024
Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and Liferay DXP 7.4.13, 7.3...
Moderate
Unreviewed
CVE-2024-25604
was published
Feb 20, 2024
Liferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before...
Moderate
Unreviewed
CVE-2024-25149
was published
Feb 20, 2024
When LDAP remote authentication is configured on F5OS, a remote user without an assigned role...
Moderate
Unreviewed
CVE-2024-24966
was published
Feb 14, 2024
The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to CAPTCHA Bypass in versions up...
Moderate
Unreviewed
CVE-2023-6963
was published
Feb 6, 2024
An incorrect authorization vulnerability has been reported to affect several QNAP operating...
Moderate
Unreviewed
CVE-2023-32967
was published
Feb 2, 2024
ProTip!
Advisories are also available from the
GraphQL API