Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

269 advisories

Loading
An authentication bypass vulnerability was found in Stilog Visual Planning 8. It allows an... Critical Unreviewed
CVE-2023-49232 was published Mar 29, 2024
SQL injection vulnerability in FME Modules quickproducttable module for PrestaShop v.1.2.1 and... Critical Unreviewed
CVE-2024-28391 was published Mar 14, 2024
SQL Injection vulnerability in MyPrestaModules "Product Catalog (CSV, Excel) Import" ... Critical Unreviewed
CVE-2024-25847 was published Mar 3, 2024
Improper Privilege Management in Tomcat Critical
CVE-2020-1938 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jun 15, 2020
Improper Privilege Management vulnerability in NooTheme Jobmonster allows Privilege Escalation... Critical Unreviewed
CVE-2024-37927 was published Jul 12, 2024
When generating the systemd service units for the docker snap (and other similar snaps), snapd... Critical Unreviewed
CVE-2020-27352 was published Jun 21, 2024
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote... Critical Unreviewed
CVE-2024-27710 was published Jul 5, 2024
Microsoft Defender for IoT Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2024-38089 was published Jul 9, 2024
Tenda N300 F3 router vulnerability allows users to bypass intended security policy and create... Critical Unreviewed
CVE-2024-25343 was published Apr 26, 2024
Incorrect access control in the UART/Serial interface on the LB-LINK BL-W1210M v2.0 router allows... Critical Unreviewed
CVE-2024-33374 was published Jun 14, 2024
An issue with the Autodiscover component in Nagios XI 2024R1.01 allows a remote attacker to... Critical Unreviewed
CVE-2024-33775 was published May 1, 2024
An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2024-32418 was published Apr 22, 2024
Improper Privilege Management vulnerability in DeluxeThemes Userpro allows Privilege Escalation... Critical Unreviewed
CVE-2024-35700 was published Jun 4, 2024
Improper Privilege Management vulnerability in UkrSolution Barcode Scanner with Inventory & Order... Critical Unreviewed
CVE-2024-33567 was published May 17, 2024
Improper Privilege Management vulnerability in 8theme XStore Core allows Privilege Escalation... Critical Unreviewed
CVE-2024-33552 was published May 17, 2024
Improper Privilege Management vulnerability in CodeRevolution Demo My WordPress allows Privilege... Critical Unreviewed
CVE-2024-31290 was published May 17, 2024
Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce... Critical Unreviewed
CVE-2024-32511 was published May 17, 2024
Improper Privilege Management vulnerability in WebWizards SalesKing allows Privilege Escalation... Critical Unreviewed
CVE-2024-22157 was published May 17, 2024
Improper Privilege Management vulnerability in Wholesale WholesaleX allows Privilege Escalation... Critical Unreviewed
CVE-2024-30542 was published May 17, 2024
Improper Privilege Management vulnerability in Masteriyo LMS allows Privilege Escalation.This... Critical Unreviewed
CVE-2024-24882 was published May 17, 2024
Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege... Critical Unreviewed
CVE-2023-51424 was published May 17, 2024
Improper Privilege Management vulnerability in powerfulwp Local Delivery Drivers for WooCommerce... Critical Unreviewed
CVE-2023-51481 was published May 17, 2024
Improper Privilege Management vulnerability in Glowlogix WP Frontend Profile allows Privilege... Critical Unreviewed
CVE-2023-51483 was published May 17, 2024
Improper Privilege Management vulnerability in IOSS WP MLM Unilevel allows Privilege Escalation... Critical Unreviewed
CVE-2023-51476 was published May 17, 2024
Improper Privilege Management vulnerability in HasThemes HT Mega allows Privilege Escalation.This... Critical Unreviewed
CVE-2023-37999 was published May 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database