GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,099
Composer 4,077
Erlang 29
GitHub Actions 19
Go 1,903
Maven 5,100
npm 3,632
NuGet 638
pip 3,249
Pub 10
RubyGems 864
Rust 818
Swift 35

Unreviewed advisories

All unreviewed 228,475

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

754 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability was found in Jinan Chicheng Company JFlow 2.0.0. It has been rated as problematic... Moderate Unreviewed

CVE-2024-9003 was published Sep 19, 2024

The issue was addressed with improved checks. This issue is fixed in visionOS 2, macOS Sequoia 15... Moderate Unreviewed

CVE-2024-40825 was published Sep 17, 2024

An Incorrect Access Control vulnerability was found in /music/view_user.php?id=3 and /music... Moderate Unreviewed

CVE-2024-42795 was published Sep 16, 2024

An Incorrect Access Control vulnerability was found in /music/ajax.php?action=delete_genre in... Moderate Unreviewed

CVE-2024-42796 was published Sep 16, 2024

Kashipara Music Management System v1.0 is vulnerable to Incorrect Access Control via /music/ajax... Moderate Unreviewed

CVE-2024-42794 was published Sep 16, 2024

Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user... Moderate Unreviewed

CVE-2024-36247 was published Sep 16, 2024

Improper access control in Intel(R) RAID Web Console software for all versions may allow an... Moderate Unreviewed

CVE-2024-34543 was published Sep 16, 2024

Improper access control in Intel(R) RAID Web Console software for all versions may allow an... Moderate Unreviewed

CVE-2024-32940 was published Sep 16, 2024

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker... Moderate Unreviewed

CVE-2024-20343 was published Sep 11, 2024

An improper access control vulnerability [CWE-284] in FortiEDR Manager API 6.2.0 through 6.2.2, 6... Moderate Unreviewed

CVE-2024-45323 was published Sep 10, 2024

A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All... Moderate Unreviewed

CVE-2024-37993 was published Sep 10, 2024

Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains an Improper Access Control... Moderate Unreviewed

CVE-2024-39580 was published Sep 10, 2024

A vulnerability has been identified in Node.js version 20, affecting users of the experimental... Moderate Unreviewed

CVE-2023-30582 was published Sep 7, 2024

An issue in the component EXR!ReadEXR+0x4eef0 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed

CVE-2024-44915 was published Aug 28, 2024

An issue in the component EXR!ReadEXR+0x40ef1 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed

CVE-2024-44913 was published Aug 28, 2024

An issue in the component EXR!ReadEXR+0x3df50 of Irfanview v4.67.1.0 allows attackers to cause an... Moderate Unreviewed

CVE-2024-44914 was published Aug 28, 2024

A vulnerability in the restricted security domain implementation of Cisco Application Policy... Moderate Unreviewed

CVE-2024-20279 was published Aug 28, 2024

A vulnerability, which was classified as critical, has been found in nafisulbari/itsourcecode... Moderate Unreviewed

CVE-2024-8216 was published Aug 27, 2024

A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a... Moderate Unreviewed

CVE-2024-5814 was published Aug 27, 2024

Kashipara Bus Ticket Reservation System v1.0 0 is vulnerable to Incorrect Access Control via ... Moderate Unreviewed

CVE-2024-42766 was published Aug 23, 2024

Swissphone DiCal-RED 4009 devices allow an unauthenticated attacker use a port-2101 TCP... Moderate Unreviewed

CVE-2024-36441 was published Aug 22, 2024

An issue has been discovered in GitLab EE affecting all versions starting from 12.5 before 17.1.6... Moderate Unreviewed

CVE-2024-3127 was published Aug 22, 2024

Mattermost versions 9.5.x <= 9.5.7, 9.10.x <= 9.10.0 fail to enforce proper access controls which... Moderate Unreviewed

CVE-2024-43813 was published Aug 22, 2024

A vulnerability has been found in Anhui Deshun Intelligent Technology Jieshun JieLink+ JSOTC2016... Moderate Unreviewed

CVE-2024-7921 was published Aug 19, 2024

A vulnerability, which was classified as critical, has been found in Anhui Deshun Intelligent... Moderate Unreviewed

CVE-2024-7919 was published Aug 19, 2024

Previous 1 2 3 4 5 … 30 31 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

754 advisories