GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,473
Composer 4,168
Erlang 30
GitHub Actions 19
Go 1,975
Maven 5,150
npm 3,698
NuGet 654
pip 3,314
Pub 11
RubyGems 882
Rust 831
Swift 35

Unreviewed advisories

All unreviewed 232,631

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

841 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability in the Central Web Authentication (CWA) feature of Cisco IOS XE Software for... Moderate Unreviewed

CVE-2024-20510 was published Sep 25, 2024

Authorization bypass in the PAM access request approval mechanism in Devolutions Server 2024.2.10... Moderate Unreviewed

CVE-2024-6512 was published Sep 25, 2024

A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been rated as... Moderate Unreviewed

CVE-2024-9082 was published Sep 22, 2024

In JetBrains YouTrack before 2024.3.44799 access to global app config data without appropriate... Moderate Unreviewed

CVE-2024-47160 was published Sep 19, 2024

In JetBrains YouTrack before 2024.3.44799 user without appropriate permissions could restore... Moderate Unreviewed

CVE-2024-47159 was published Sep 19, 2024

An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5... Moderate Unreviewed

CVE-2024-2743 was published Sep 12, 2024

A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a... Moderate Unreviewed

CVE-2024-8691 was published Sep 11, 2024

An access control vulnerability was discovered in the Reports section due to a specific access... Moderate Unreviewed

CVE-2024-4465 was published Sep 11, 2024

Citrix Workspace App version 23.9.0.24.4 on Dell ThinOS 2311 contains an Incorrect Authorization... Moderate Unreviewed

CVE-2024-42423 was published Sep 10, 2024

Incorrect authorization in CocktailbarService prior to SMR Sep-2024 Release 1 allows local... Moderate Unreviewed

CVE-2024-34650 was published Sep 4, 2024

Improper authorization in One UI Home prior to SMR Sep-2024 Release 1 allows physical attackers... Moderate Unreviewed

CVE-2024-34642 was published Sep 4, 2024

Improper authorization in My Files prior to SMR Sep-2024 Release 1 allows local attackers to... Moderate Unreviewed

CVE-2024-34651 was published Sep 4, 2024

Incorrect authorization in kperfmon prior to SMR Sep-2024 Release 1 allows local attackers to... Moderate Unreviewed

CVE-2024-34652 was published Sep 4, 2024

Incorrect Authorization vulnerability in Themeum Droip allows Accessing Functionality Not... Moderate Unreviewed

CVE-2024-43954 was published Aug 29, 2024

An Stored Cross-site Scripting vulnerability affects Zohocorp ManageEngine ServiceDesk Plus,... Moderate Unreviewed

CVE-2024-38869 was published Aug 23, 2024

The Themify Builder plugin for WordPress is vulnerable to unauthorized post duplication due to... Moderate Unreviewed

CVE-2024-7836 was published Aug 22, 2024

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed

CVE-2024-20466 was published Aug 21, 2024

Logsign Unified SecOps Platform Incorrect Authorization Authentication Bypass Vulnerability. This... Moderate Unreviewed

CVE-2024-7604 was published Aug 21, 2024

An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server, allowing an... Moderate Unreviewed

CVE-2024-7711 was published Aug 20, 2024

An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed

CVE-2024-6337 was published Aug 20, 2024

A vulnerability has been identified in SINEC NMS (All versions < V3.0). The affected application... Moderate Unreviewed

CVE-2024-41941 was published Aug 13, 2024

Insufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533... Moderate Unreviewed

CVE-2024-7004 was published Aug 6, 2024

Incorrect Authorization vulnerability identified in OpenText ArcSight Intelligence. Moderate Unreviewed

CVE-2024-6358 was published Aug 6, 2024

In the System → Maintenance tool, the Logged Users tab surfaces sessionId data for all users via... Moderate Unreviewed

CVE-2024-4447 was published Jul 26, 2024

An Incorrect Authorization vulnerability was identified in GitHub Enterprise Server that allowed... Moderate Unreviewed

CVE-2024-5816 was published Jul 17, 2024

Previous 1 2 3 4 5 … 33 34 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

841 advisories