Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+

257 advisories

Loading
Improper Privilege Management vulnerability in CodeRevolution Demo My WordPress allows Privilege... Critical Unreviewed
CVE-2024-31290 was published May 17, 2024
Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce... Critical Unreviewed
CVE-2024-32511 was published May 17, 2024
Improper Privilege Management vulnerability in WebWizards SalesKing allows Privilege Escalation... Critical Unreviewed
CVE-2024-22157 was published May 17, 2024
Improper Privilege Management vulnerability in Masteriyo LMS allows Privilege Escalation.This... Critical Unreviewed
CVE-2024-24882 was published May 17, 2024
Improper Privilege Management vulnerability in powerfulwp Local Delivery Drivers for WooCommerce... Critical Unreviewed
CVE-2023-51481 was published May 17, 2024
Improper Privilege Management vulnerability in IOSS WP MLM Unilevel allows Privilege Escalation... Critical Unreviewed
CVE-2023-51476 was published May 17, 2024
Improper Privilege Management vulnerability in Glowlogix WP Frontend Profile allows Privilege... Critical Unreviewed
CVE-2023-51483 was published May 17, 2024
Improper Privilege Management vulnerability in Saleswonder Team WebinarIgnition allows Privilege... Critical Unreviewed
CVE-2023-51424 was published May 17, 2024
Improper Privilege Management vulnerability in Favethemes Houzez allows Privilege Escalation.This... Critical Unreviewed
CVE-2023-26540 was published May 17, 2024
Improper Privilege Management vulnerability in HasThemes HT Mega allows Privilege Escalation.This... Critical Unreviewed
CVE-2023-37999 was published May 17, 2024
Improper Privilege Management vulnerability in XTemos Woodmart Core allows Privilege Escalation... Critical Unreviewed
CVE-2023-32244 was published May 17, 2024
Improper Privilege Management vulnerability in WhatArmy WatchTowerHQ allows Privilege Escalation... Critical Unreviewed
CVE-2023-25701 was published May 17, 2024
Improper Privilege Management vulnerability in favethemes Houzez Login Register allows Privilege... Critical Unreviewed
CVE-2023-26009 was published May 17, 2024
An issue with the Autodiscover component in Nagios XI 2024R1.01 allows a remote attacker to... Critical Unreviewed
CVE-2024-33775 was published May 1, 2024
An issue in TVS Motor Company Limited TVS Connet Android v.4.5.1 and iOS v.5.0.0 allows a remote... Critical Unreviewed
CVE-2024-33308 was published Apr 30, 2024
Tenda N300 F3 router vulnerability allows users to bypass intended security policy and create... Critical Unreviewed
CVE-2024-25343 was published Apr 26, 2024
Privilege Escalation in kubevirt Critical
CVE-2020-14316 was published for kubevirt.io/kubevirt (Go) Apr 24, 2024
Improper Privilege Management vulnerability in Jacques Malgrange Rencontre – Dating Site allows... Critical Unreviewed
CVE-2023-51425 was published Apr 24, 2024
An issue in flusity CMS v2.33 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2024-32418 was published Apr 22, 2024
AWS Amplify CLI has incorrect trust policy management Critical
CVE-2024-28056 was published for @aws-amplify/cli (npm) Apr 15, 2024
SQL Injection vulnerability in Tongtianxing Technology Co., Ltd CMSV6 v.7.31.0.2 through v.7.31.0... Critical Unreviewed
CVE-2024-29667 was published Mar 29, 2024
An authentication bypass vulnerability was found in Stilog Visual Planning 8. It allows an... Critical Unreviewed
CVE-2023-49232 was published Mar 29, 2024
An issue was discovered in tramyardg autoexpress version 1.3.0, allows unauthenticated remote... Critical Unreviewed
CVE-2023-48902 was published Mar 21, 2024
SQL injection vulnerability in FME Modules quickproducttable module for PrestaShop v.1.2.1 and... Critical Unreviewed
CVE-2024-28391 was published Mar 14, 2024
Android kernel allows Elevation of privilege. Critical Unreviewed
CVE-2024-27207 was published Mar 11, 2024
ProTip! Advisories are also available from the GraphQL API