GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,125 advisories
Filter by severity
External Secrets Operator vulnerable to privilege escalation
High
CVE-2024-45041
was published
for
github.com/external-secrets/external-secrets
(Go)
Sep 9, 2024
The Newsletters plugin for WordPress is vulnerable to privilege escalation in all versions up to,...
High
Unreviewed
CVE-2024-8247
was published
Sep 6, 2024
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper privilege...
High
Unreviewed
CVE-2024-45173
was published
Sep 5, 2024
Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account...
High
Unreviewed
CVE-2024-4555
was published
Aug 28, 2024
An Incorrect Access Control vulnerability was found in /admin/delete_room.php in Kashipara Hotel...
High
Unreviewed
CVE-2024-42774
was published
Aug 22, 2024
The DXE module SmmComputrace contains a vulnerability that allows local attackers to leak stack...
High
Unreviewed
CVE-2024-33656
was published
Aug 21, 2024
A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful...
High
Unreviewed
CVE-2020-11846
was published
Aug 21, 2024
Dell Repository Manager version 3.4.2 and earlier, contain a Local Privilege Escalation...
High
Unreviewed
CVE-2023-22576
was published
Aug 21, 2024
Kanister vulnerable to cluster-level privilege escalation
High
CVE-2024-43403
was published
for
github.com/kanisterio/kanister
(Go)
Aug 20, 2024
VTiger CRM <= 8.1.0 does not correctly check user privileges. A low-privileged user can interact...
High
Unreviewed
CVE-2024-42995
was published
Aug 16, 2024
In setForceHideNonSystemOverlayWindowIfNeeded of WindowState.java, there is a possible way for...
High
Unreviewed
CVE-2024-34741
was published
Aug 16, 2024
In setTransactionState of SurfaceFlinger.cpp, there is a possible way to perform tapjacking due...
High
Unreviewed
CVE-2024-34743
was published
Aug 16, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ...
High
Unreviewed
CVE-2024-41903
was published
Aug 13, 2024
An issue in OWASP DefectDojo before v.1.5.3.1 allows a remote attacker to escalate privileges via...
High
Unreviewed
CVE-2023-48171
was published
Aug 12, 2024
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The zmmailboxdmgr binary, a...
High
Unreviewed
CVE-2024-27442
was published
Aug 12, 2024
There is a permission and access control vulnerability of ZTE's ZXV10 XT802/ET301 product...
High
Unreviewed
CVE-2024-22069
was published
Aug 8, 2024
Nagios NDOUtils before 2.1.4 allows privilege escalation from nagios to root because certain...
High
Unreviewed
CVE-2024-43199
was published
Aug 7, 2024
Juju's unprivileged user running on charm node can leak any secret or relation data accessible to the local charm
High
GHSA-6vjm-54vp-mxhx
was published
for
github.com/juju/juju
(Go)
Aug 5, 2024
The JetFormBuilder plugin for WordPress is vulnerable to privilege escalation in all versions up...
High
Unreviewed
CVE-2024-7291
was published
Aug 3, 2024
Insecure Permission vulnerability in Cosy+ devices running a firmware 21.x below 21.2s10 or a...
High
Unreviewed
CVE-2024-33894
was published
Aug 2, 2024
Improper Privilege Management vulnerability in IdeaBox PowerPack for Beaver Builder allows...
High
Unreviewed
CVE-2024-39633
was published
Aug 1, 2024
Improper Privilege Management vulnerability in IdeaBox PowerPack Pro for Elementor allows...
High
Unreviewed
CVE-2024-39634
was published
Aug 1, 2024
Improper Privilege Management vulnerability in WPForms, LLC. WPForms User Registration allows...
High
Unreviewed
CVE-2023-52209
was published
Aug 1, 2024
Improper Privilege Management vulnerability in WebAppick CTX Feed allows Privilege Escalation...
High
Unreviewed
CVE-2024-38775
was published
Aug 1, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS...
High
Unreviewed
CVE-2024-40802
was published
Jul 30, 2024
ProTip!
Advisories are also available from the
GraphQL API