Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,437 advisories

Loading
A vulnerability classified as problematic has been found in DedeCMS 5.7.116. This affects an... Moderate Unreviewed
CVE-2024-11138 was published Nov 12, 2024
Adobe Connect versions 12.6, 11.4.7 and earlier are affected by an Improper Access Control... Moderate Unreviewed
CVE-2024-54038 was published Dec 10, 2024
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2024-11868 was published Dec 10, 2024
Snap One OvrC cloud servers contain a route an attacker can use to bypass requirements and... Critical Unreviewed
CVE-2023-31241 was published May 22, 2023
Dell Power Manager (DPM), versions prior to 3.17, contain an improper access control... High Unreviewed
CVE-2024-49600 was published Dec 9, 2024
A function-level access control vulnerability in Unifiedtransform version 2.0 and potentially... Moderate Unreviewed
CVE-2024-12307 was published Dec 9, 2024
Multiple access control vulnerabilities in Unifiedtransform version 2.0 and potentially earlier... Moderate Unreviewed
CVE-2024-12306 was published Dec 9, 2024
The Related Posts, Inline Related Posts, Contextual Related Posts, Related Content By PickPlugins... Moderate Unreviewed
CVE-2024-10937 was published Dec 5, 2024
A vulnerability, which was classified as critical, was found in CodeAstro Hospital Management... Moderate Unreviewed
CVE-2024-11674 was published Nov 26, 2024
A vulnerability was found in Codezips Free Exam Hall Seating Management System 1.0. It has been... Moderate Unreviewed
CVE-2024-11661 was published Nov 25, 2024
A vulnerability in the bootloader of Cisco NX-OS Software could allow an unauthenticated attacker... Moderate Unreviewed
CVE-2024-20397 was published Dec 4, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Critical Unreviewed
CVE-2023-42945 was published Feb 21, 2024
Bots using py-cord as Discord API wrapper are vulnerable to shutdowns through remote code execution High
CVE-2022-36024 was published for py-cord (pip) Aug 18, 2022
NeloBlivion BobDotCom
A vulnerability in the application policy configuration of Cisco Firepower Threat Defense (FTD)... Moderate Unreviewed
CVE-2020-3312 was published May 24, 2022
Multiple vulnerabilities in the payload inspection for Ethernet Industrial Protocol (ENIP)... High Unreviewed
CVE-2021-34754 was published May 24, 2022
A vulnerability in an access control mechanism of Cisco Firepower Management Center (FMC)... Moderate Unreviewed
CVE-2021-1477 was published May 24, 2022
OpenStack Identity Keystone Improper Access Control Moderate
CVE-2016-4911 was published for keystone (pip) May 17, 2022
MoinMoin Access Restrictions Bypassed due to improper ACL enforcement High
CVE-2008-6603 was published for moin (pip) May 17, 2022
OpenStack Compute (Nova) Improper Access Control Moderate
CVE-2015-2687 was published for nova (pip) May 17, 2022
MoinMoin vulnerable to privilege escalation High
CVE-2008-1937 was published for moin (pip) May 1, 2022
QSEE will randomly experience a fatal error during execution due to speculative instruction... High Unreviewed
CVE-2016-10408 was published Nov 26, 2024
BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-8805 was published Nov 22, 2024
Allegra SiteConfigAction Improper Access Control Remote Code Execution Vulnerability. This... Critical Unreviewed
CVE-2023-51644 was published Nov 22, 2024
A security flaw in Node.js allows a bypass of network import restrictions. By embedding non... Moderate Unreviewed
CVE-2024-22020 was published Jul 9, 2024
The Breakdance plugin for WordPress is vulnerable to unauthorized access of data in all versions... Moderate Unreviewed
CVE-2024-5331 was published Aug 1, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database