GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
269 advisories
Filter by severity
An authentication bypass vulnerability was found in Stilog Visual Planning 8. It allows an...
Critical
Unreviewed
CVE-2023-49232
was published
Mar 29, 2024
SQL injection vulnerability in FME Modules quickproducttable module for PrestaShop v.1.2.1 and...
Critical
Unreviewed
CVE-2024-28391
was published
Mar 14, 2024
SQL Injection vulnerability in MyPrestaModules "Product Catalog (CSV, Excel) Import" ...
Critical
Unreviewed
CVE-2024-25847
was published
Mar 3, 2024
Improper Privilege Management in Tomcat
Critical
CVE-2020-1938
was published
for
org.apache.tomcat.embed:tomcat-embed-core
(Maven)
Jun 15, 2020
Improper Privilege Management vulnerability in NooTheme Jobmonster allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-37927
was published
Jul 12, 2024
When generating the systemd service units for the docker snap (and other similar snaps), snapd...
Critical
Unreviewed
CVE-2020-27352
was published
Jun 21, 2024
An issue in Eskooly Free Online School management Software v.3.0 and before allows a remote...
Critical
Unreviewed
CVE-2024-27710
was published
Jul 5, 2024
Microsoft Defender for IoT Elevation of Privilege Vulnerability
Critical
Unreviewed
CVE-2024-38089
was published
Jul 9, 2024
Tenda N300 F3 router vulnerability allows users to bypass intended security policy and create...
Critical
Unreviewed
CVE-2024-25343
was published
Apr 26, 2024
Incorrect access control in the UART/Serial interface on the LB-LINK BL-W1210M v2.0 router allows...
Critical
Unreviewed
CVE-2024-33374
was published
Jun 14, 2024
An issue with the Autodiscover component in Nagios XI 2024R1.01 allows a remote attacker to...
Critical
Unreviewed
CVE-2024-33775
was published
May 1, 2024
An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the...
Critical
Unreviewed
CVE-2024-32418
was published
Apr 22, 2024
Improper Privilege Management vulnerability in DeluxeThemes Userpro allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-35700
was published
Jun 4, 2024
Improper Privilege Management vulnerability in UkrSolution Barcode Scanner with Inventory & Order...
Critical
Unreviewed
CVE-2024-33567
was published
May 17, 2024
Improper Privilege Management vulnerability in 8theme XStore Core allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-33552
was published
May 17, 2024
Improper Privilege Management vulnerability in CodeRevolution Demo My WordPress allows Privilege...
Critical
Unreviewed
CVE-2024-31290
was published
May 17, 2024
Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce...
Critical
Unreviewed
CVE-2024-32511
was published
May 17, 2024
Improper Privilege Management vulnerability in WebWizards SalesKing allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-22157
was published
May 17, 2024
Improper Privilege Management vulnerability in Wholesale WholesaleX allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-30542
was published
May 17, 2024
Improper Privilege Management vulnerability in Masteriyo LMS allows Privilege Escalation.This...
Critical
Unreviewed
CVE-2024-24882
was published
May 17, 2024
Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege...
Critical
Unreviewed
CVE-2023-51424
was published
May 17, 2024
Improper Privilege Management vulnerability in powerfulwp Local Delivery Drivers for WooCommerce...
Critical
Unreviewed
CVE-2023-51481
was published
May 17, 2024
Improper Privilege Management vulnerability in Glowlogix WP Frontend Profile allows Privilege...
Critical
Unreviewed
CVE-2023-51483
was published
May 17, 2024
Improper Privilege Management vulnerability in IOSS WP MLM Unilevel allows Privilege Escalation...
Critical
Unreviewed
CVE-2023-51476
was published
May 17, 2024
Improper Privilege Management vulnerability in HasThemes HT Mega allows Privilege Escalation.This...
Critical
Unreviewed
CVE-2023-37999
was published
May 17, 2024
ProTip!
Advisories are also available from the
GraphQL API