Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

974 advisories

Loading
Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an... High Unreviewed
CVE-2023-22293 was published Nov 7, 2024
RabbitMQ HTTP API's queue deletion endpoint does not verify that the user has a required permission High
CVE-2024-51988 was published for rabbit_common (Erlang) Nov 6, 2024
bedla anhanhnguyen
michaelklishin
Improper access control in some Intel(R) VROC software before version 8.0.8.1001 may allow an... High Unreviewed
CVE-2023-31271 was published Oct 28, 2024
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an... High Unreviewed
CVE-2023-32647 was published Oct 25, 2024
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an... High Unreviewed
CVE-2023-38561 was published Oct 25, 2024
Improper access control element in some Intel(R) Ethernet tools and driver install software,... High Unreviewed
CVE-2023-39432 was published Oct 24, 2024
Improper access control in some Intel(R) DSA software before version 23.4.33 may allow an... High Unreviewed
CVE-2023-39425 was published Oct 24, 2024
Improper access control in some Intel Unite(R) Client software before version 4.2.35041 may allow... High Unreviewed
CVE-2023-40161 was published Oct 23, 2024
In Dell SupportAssist for Home PCs (between v3.0 and v3.14.1) and SupportAssist for Business PCs... High Unreviewed
CVE-2023-44283 was published Oct 17, 2024
The Facebook Chat Plugin for WordPress is vulnerable to authorization bypass due to a missing... High Unreviewed
CVE-2020-36838 was published Oct 16, 2024
Improper Access Control in Imagine Cup allows an authorized attacker to elevate privileges over a... High Unreviewed
CVE-2024-38204 was published Oct 16, 2024
Improper access control in some Intel(R) Thunderbolt(TM) DCH drivers for Windows before version... High Unreviewed
CVE-2023-25777 was published Oct 10, 2024
Magento Open Source Improper Access Control vulnerability High
CVE-2024-45118 was published for magento/community-edition (Composer) Oct 10, 2024
Insecure permissions in the Bluetooth Low Energy (BLE) component of Fire-Boltt Artillery Smart... High Unreviewed
CVE-2024-46539 was published Oct 8, 2024
Visual C++ Redistributable Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43590 was published Oct 8, 2024
Microsoft SharePoint Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43503 was published Oct 8, 2024
Vulnerability in Distro Linux Workbooth v2.5 that allows to escalate privileges to the root user... High Unreviewed
CVE-2024-9576 was published Oct 7, 2024
An issue was discovered in SonarSource SonarQube before 9.9.5 LTA and 10.x before 10.5. A... High Unreviewed
CVE-2024-47910 was published Oct 4, 2024
PIX-LINK LV-WR22 RE3002-P1-01_V117.0 is vulnerable to Improper Access Control. The TELNET service... High Unreviewed
CVE-2024-46280 was published Sep 30, 2024
TestLink 1.9.20 is vulnerable to Incorrect Access Control in the TestPlan editing section. When a... High Unreviewed
CVE-2024-46097 was published Sep 27, 2024
An information disclosure vulnerability in the /Letter/PrintQr/ endpoint of Solvait v24.4.2... High Unreviewed
CVE-2024-44860 was published Sep 26, 2024
A host header injection vulnerability in scheduleR v0.0.18 allows attackers to obtain the... High Unreviewed
CVE-2024-45982 was published Sep 26, 2024
An issue in Foxit Software Foxit PDF Reader v.2024.2.2.25170 allows a local attacker to execute... High Unreviewed
CVE-2024-41605 was published Sep 26, 2024
Incorrect access control in IceCMS v3.4.7 and before allows attackers to authenticate by entering... High Unreviewed
CVE-2024-46607 was published Sep 25, 2024
An access control issue in the CheckVip function in UserController.java of IceCMS v3.4.7 and... High Unreviewed
CVE-2024-46609 was published Sep 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database