GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
86 advisories
Filter by severity
This vulnerability exists in Shilpi Client Dashboard due to lack of authorization for...
High
Unreviewed
CVE-2024-47653
was published
Oct 4, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 16.5 before 16.7.6...
Moderate
Unreviewed
CVE-2023-6477
was published
Feb 22, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15...
Moderate
Unreviewed
CVE-2023-2485
was published
Jun 7, 2023
The WebDAV service in Infinera TNMS (Transcend Network Management System) 19.10.3 allows a low...
Critical
Unreviewed
CVE-2024-25660
was published
Oct 1, 2024
A remote code execution (RCE) vulnerability in the component /admin/store.php of Emlog Pro before...
Moderate
Unreviewed
CVE-2024-46540
was published
Sep 30, 2024
IBM CICS Transaction Gateway 9.3 could allow a user to transfer or view files due to improper...
Moderate
Unreviewed
CVE-2023-47140
was published
Jan 8, 2024
IBM Spectrum Protect Backup-Archive Client 8.1.0.0 through 8.1.17.2 may allow a local user to...
High
Unreviewed
CVE-2023-28956
was published
Jun 22, 2023
Improper access control in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom...
High
Unreviewed
CVE-2023-49647
was published
Jan 13, 2024
Incorrect Privilege Assignment vulnerability in favethemes Houzez houzez allows Privilege...
High
Unreviewed
CVE-2024-22303
was published
Sep 17, 2024
Privilege Escalation vulnerability in favethemes Houzez Login Register houzez-login-register.This...
High
Unreviewed
CVE-2024-21743
was published
Sep 17, 2024
A privilege escalation vulnerability was reported in some Lenovo tablet products that could allow...
Moderate
Unreviewed
CVE-2023-5080
was published
Jan 19, 2024
The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in...
High
Unreviewed
CVE-2024-8253
was published
Sep 11, 2024
IBM MQ Operator 2.0.26 and 3.2.4 could allow an authenticated user in a specifically defined role...
High
Unreviewed
CVE-2024-40681
was published
Sep 7, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contains an incorrect privilege assignment...
Moderate
Unreviewed
CVE-2024-39579
was published
Aug 31, 2024
An issue was discovered in BeyondTrust Privilege Management for Windows before 24.1. When an low...
Moderate
Unreviewed
CVE-2024-25083
was published
Feb 16, 2024
Insecure permissions in hwameistor v0.14.3 allows attackers to access sensitive data and escalate...
High
Unreviewed
CVE-2024-36534
was published
Jul 24, 2024
A privilege escalation exists in the updater for Plantronics Hub 3.25.1 and below.
Moderate
Unreviewed
CVE-2024-27460
was published
May 14, 2024
Insecure Permission vulnerability in TotalAV v.6.0.740 allows a local attacker to escalate...
High
Unreviewed
CVE-2024-31771
was published
May 14, 2024
Dell Power Manager (DPM), versions 3.15.0 and prior, contains an Incorrect Privilege Assignment...
High
Unreviewed
CVE-2024-39576
was published
Aug 22, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)...
Moderate
Unreviewed
CVE-2024-20466
was published
Aug 21, 2024
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed...
Critical
Unreviewed
CVE-2024-28000
was published
Aug 21, 2024
In createFromParcel of UsbConfiguration.java, there is a possible background activity launch (BAL...
High
Unreviewed
CVE-2023-40109
was published
Feb 16, 2024
An issue was discovered in Couchbase Server before 7.2.x before 7.2.4. otpCookie is shown with...
High
Unreviewed
CVE-2023-50437
was published
Feb 29, 2024
A vulnerability has been identified in RUGGEDCOM RMC8388 V5.X (All versions < V5.9.0), RUGGEDCOM...
High
Unreviewed
CVE-2024-38278
was published
Jul 9, 2024
Insecure Permissions vulnerability in Tencent wechat v.8.0.37 allows an attacker to escalate...
High
Unreviewed
CVE-2024-40433
was published
Jul 27, 2024
ProTip!
Advisories are also available from the
GraphQL API