Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,049
Erlang
29
GitHub Actions
18
Go
1,871
Maven
5,000+
npm
3,597
NuGet
638
pip
3,198
Pub
10
RubyGems
852
Rust
809
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,058 advisories

Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account... High Unreviewed
CVE-2024-4555 was published Aug 28, 2024
An Incorrect Access Control vulnerability was found in /admin/delete_room.php in Kashipara Hotel... High Unreviewed
CVE-2024-42774 was published Aug 22, 2024
The DXE module SmmComputrace contains a vulnerability that allows local attackers to leak stack... High Unreviewed
CVE-2024-33656 was published Aug 21, 2024
A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful... High Unreviewed
CVE-2020-11846 was published Aug 21, 2024
Dell Repository Manager version 3.4.2 and earlier, contain a Local Privilege Escalation... High Unreviewed
CVE-2023-22576 was published Aug 21, 2024
Kanister vulnerable to cluster-level privilege escalation High
CVE-2024-43403 was published for github.com/kanisterio/kanister (Go) Aug 20, 2024
younaman
VTiger CRM <= 8.1.0 does not correctly check user privileges. A low-privileged user can interact... High Unreviewed
CVE-2024-42995 was published Aug 16, 2024
In setForceHideNonSystemOverlayWindowIfNeeded of WindowState.java, there is a possible way for... High Unreviewed
CVE-2024-34741 was published Aug 16, 2024
In setTransactionState of SurfaceFlinger.cpp, there is a possible way to perform tapjacking due... High Unreviewed
CVE-2024-34743 was published Aug 16, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ... High Unreviewed
CVE-2024-41903 was published Aug 13, 2024
An issue in OWASP DefectDojo before v.1.5.3.1 allows a remote attacker to escalate privileges via... High Unreviewed
CVE-2023-48171 was published Aug 12, 2024
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The zmmailboxdmgr binary, a... High Unreviewed
CVE-2024-27442 was published Aug 12, 2024
There is a permission and access control vulnerability of ZTE's ZXV10 XT802/ET301 product... High Unreviewed
CVE-2024-22069 was published Aug 8, 2024
Nagios NDOUtils before 2.1.4 allows privilege escalation from nagios to root because certain... High Unreviewed
CVE-2024-43199 was published Aug 7, 2024
Juju's unprivileged user running on charm node can leak any secret or relation data accessible to the local charm High
GHSA-6vjm-54vp-mxhx was published for github.com/juju/juju (Go) Aug 5, 2024
phvalguima manadart
SimonRichardson hpidcock lucistanescu eslerm
The JetFormBuilder plugin for WordPress is vulnerable to privilege escalation in all versions up... High Unreviewed
CVE-2024-7291 was published Aug 3, 2024
Insecure Permission vulnerability in Cosy+ devices running a firmware 21.x below 21.2s10 or a... High Unreviewed
CVE-2024-33894 was published Aug 2, 2024
Improper Privilege Management vulnerability in IdeaBox PowerPack for Beaver Builder allows... High Unreviewed
CVE-2024-39633 was published Aug 1, 2024
Improper Privilege Management vulnerability in IdeaBox PowerPack Pro for Elementor allows... High Unreviewed
CVE-2024-39634 was published Aug 1, 2024
Improper Privilege Management vulnerability in WPForms, LLC. WPForms User Registration allows... High Unreviewed
CVE-2023-52209 was published Aug 1, 2024
Improper Privilege Management vulnerability in WebAppick CTX Feed allows Privilege Escalation... High Unreviewed
CVE-2024-38775 was published Aug 1, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS... High Unreviewed
CVE-2024-40802 was published Jul 30, 2024
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS... High Unreviewed
CVE-2024-40781 was published Jul 30, 2024
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6... High Unreviewed
CVE-2024-27826 was published Jul 30, 2024
The MSI installer for Splashtop Streamer for Windows before 3.7.0.0 uses a temporary folder with... High Unreviewed
CVE-2024-42050 was published Jul 28, 2024
ProTip! Advisories are also available from the GraphQL API