GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
257 advisories
Filter by severity
Improper Privilege Management vulnerability in CodeRevolution Demo My WordPress allows Privilege...
Critical
Unreviewed
CVE-2024-31290
was published
May 17, 2024
Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce...
Critical
Unreviewed
CVE-2024-32511
was published
May 17, 2024
Improper Privilege Management vulnerability in WebWizards SalesKing allows Privilege Escalation...
Critical
Unreviewed
CVE-2024-22157
was published
May 17, 2024
Improper Privilege Management vulnerability in Masteriyo LMS allows Privilege Escalation.This...
Critical
Unreviewed
CVE-2024-24882
was published
May 17, 2024
Improper Privilege Management vulnerability in powerfulwp Local Delivery Drivers for WooCommerce...
Critical
Unreviewed
CVE-2023-51481
was published
May 17, 2024
Improper Privilege Management vulnerability in IOSS WP MLM Unilevel allows Privilege Escalation...
Critical
Unreviewed
CVE-2023-51476
was published
May 17, 2024
Improper Privilege Management vulnerability in Glowlogix WP Frontend Profile allows Privilege...
Critical
Unreviewed
CVE-2023-51483
was published
May 17, 2024
Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege...
Critical
Unreviewed
CVE-2023-51424
was published
May 17, 2024
Improper Privilege Management vulnerability in Favethemes Houzez allows Privilege Escalation.This...
Critical
Unreviewed
CVE-2023-26540
was published
May 17, 2024
Improper Privilege Management vulnerability in HasThemes HT Mega allows Privilege Escalation.This...
Critical
Unreviewed
CVE-2023-37999
was published
May 17, 2024
Improper Privilege Management vulnerability in XTemos Woodmart Core allows Privilege Escalation...
Critical
Unreviewed
CVE-2023-32244
was published
May 17, 2024
Improper Privilege Management vulnerability in WhatArmy WatchTowerHQ allows Privilege Escalation...
Critical
Unreviewed
CVE-2023-25701
was published
May 17, 2024
Improper Privilege Management vulnerability in favethemes Houzez Login Register allows Privilege...
Critical
Unreviewed
CVE-2023-26009
was published
May 17, 2024
An issue with the Autodiscover component in Nagios XI 2024R1.01 allows a remote attacker to...
Critical
Unreviewed
CVE-2024-33775
was published
May 1, 2024
An issue in TVS Motor Company Limited TVS Connet Android v.4.5.1 and iOS v.5.0.0 allows a remote...
Critical
Unreviewed
CVE-2024-33308
was published
Apr 30, 2024
Tenda N300 F3 router vulnerability allows users to bypass intended security policy and create...
Critical
Unreviewed
CVE-2024-25343
was published
Apr 26, 2024
Privilege Escalation in kubevirt
Critical
CVE-2020-14316
was published
for
kubevirt.io/kubevirt
(Go)
Apr 24, 2024
Improper Privilege Management vulnerability in Jacques Malgrange Rencontre – Dating Site allows...
Critical
Unreviewed
CVE-2023-51425
was published
Apr 24, 2024
An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the...
Critical
Unreviewed
CVE-2024-32418
was published
Apr 22, 2024
AWS Amplify CLI has incorrect trust policy management
Critical
CVE-2024-28056
was published
for
@aws-amplify/cli
(npm)
Apr 15, 2024
SQL Injection vulnerability in Tongtianxing Technology Co., Ltd CMSV6 v.7.31.0.2 through v.7.31.0...
Critical
Unreviewed
CVE-2024-29667
was published
Mar 29, 2024
An authentication bypass vulnerability was found in Stilog Visual Planning 8. It allows an...
Critical
Unreviewed
CVE-2023-49232
was published
Mar 29, 2024
An issue was discovered in tramyardg autoexpress version 1.3.0, allows unauthenticated remote...
Critical
Unreviewed
CVE-2023-48902
was published
Mar 21, 2024
SQL injection vulnerability in FME Modules quickproducttable module for PrestaShop v.1.2.1 and...
Critical
Unreviewed
CVE-2024-28391
was published
Mar 14, 2024
Android kernel allows Elevation of privilege.
Critical
Unreviewed
CVE-2024-27207
was published
Mar 11, 2024
ProTip!
Advisories are also available from the
GraphQL API