GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
99 advisories
Filter by severity
The WP Data Access plugin for WordPress is vulnerable to privilege escalation in versions up to,...
High
Unreviewed
CVE-2023-1874
was published
Apr 12, 2023
An insecure modification vulnerability in the /etc/passwd file was found in the operator...
High
Unreviewed
CVE-2019-19353
was published
May 24, 2022
An insecure modification vulnerability in the /etc/passwd file was found in the openshift/ansible...
High
Unreviewed
CVE-2019-19350
was published
May 24, 2022
A potential incorrect privilege assignment vulnerability exists in the app permission update API...
High
Unreviewed
CVE-2019-11893
was published
May 24, 2022
A potential incorrect privilege assignment vulnerability exists in the app pairing mechanism of...
High
Unreviewed
CVE-2019-11891
was published
May 24, 2022
It was discovered that a systemd service that uses DynamicUser property can create a SUID/SGID...
High
Unreviewed
CVE-2019-3843
was published
May 24, 2022
A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers...
High
Unreviewed
CVE-2024-20320
was published
Mar 13, 2024
When running in Appliance mode, an authenticated attacker assigned the Administrator role may be...
Moderate
Unreviewed
CVE-2024-23976
was published
Feb 14, 2024
Incorrect Privilege Assignment vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R...
Moderate
Unreviewed
CVE-2023-6815
was published
Feb 13, 2024
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration...
Critical
Unreviewed
CVE-2022-4232
was published
Nov 30, 2022
A vulnerability in the CLI of Cisco IOS XE Software for Cisco Catalyst 9000 Family Switches and...
High
Unreviewed
CVE-2022-20681
was published
Apr 16, 2022
A vulnerability has been found in Facepay 1.0 and classified as critical. Affected by this...
High
Unreviewed
CVE-2022-4281
was published
Dec 5, 2022
A vulnerability has been found in SourceCodester Human Resource Management System 1.0 and...
Critical
Unreviewed
CVE-2022-3458
was published
Oct 12, 2022
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has...
High
Unreviewed
CVE-2022-3549
was published
Oct 17, 2022
A vulnerability, which was classified as critical, has been found in SourceCodester Human...
Critical
Unreviewed
CVE-2022-4273
was published
Dec 3, 2022
Incorrect Privilege Assignment in Jenkins Script Security Plugin
High
CVE-2019-10355
was published
for
org.jenkins-ci.plugins:script-security
(Maven)
May 24, 2022
A vulnerability classified as critical was found in SourceCodester Web-Based Student Clearance...
High
Unreviewed
CVE-2022-3436
was published
Oct 10, 2022
The FACSChorus software does not properly assign data access privileges for operating system user...
Low
Unreviewed
CVE-2023-29066
was published
Nov 28, 2023
Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The...
High
Unreviewed
CVE-2023-5913
was published
Nov 8, 2023
AWS CDK EKS overly permissive trust policies
Moderate
CVE-2023-35165
was published
for
@aws-cdk/aws-eks
(npm)
Jun 19, 2023
The authentication mechanism used by poll workers to administer voting using the tested version...
High
Unreviewed
CVE-2022-1746
was published
Jun 25, 2022
A vulnerability was found in SourceCodester Human Resource Management System 1.0 and classified...
High
Unreviewed
CVE-2022-3496
was published
Oct 14, 2022
A vulnerability was found in seccome Ehoney. It has been rated as critical. This issue affects...
Critical
Unreviewed
CVE-2022-3735
was published
Oct 28, 2022
A vulnerability was found in Click Studios Passwordstate and Passwordstate Browser Extension...
Moderate
Unreviewed
CVE-2022-4613
was published
Dec 19, 2022
A vulnerability in the REST API of Cisco Identity Services Engine (ISE) could allow an...
High
Unreviewed
CVE-2021-1594
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API