Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,000 advisories

Loading
ZenML Server Remote Privilege Escalation Vulnerability High
CVE-2024-25723 was published for zenml (pip) Feb 27, 2024
hahwul
Django Access Restrictions Bypass High
CVE-2016-2048 was published for django (pip) May 17, 2022
MarkLee131
Incorrect Authorization in calibreweb High
CVE-2022-0273 was published for calibreweb (pip) Jan 31, 2022
Improper Access Control in Apache Airflow High
CVE-2021-26559 was published for apache-airflow (pip) Apr 7, 2021
sunSUNQ
Improper Access Control in UEFI firmware for some Intel(R) Server Board M70KLP may allow a... High Unreviewed
CVE-2024-39609 was published Nov 13, 2024
Improper access control for some Intel(R) EMA software before version 1.13.1.0 may allow an... High Unreviewed
CVE-2024-32483 was published Nov 13, 2024
Visual Studio Code Remote Extension Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49049 was published Nov 12, 2024
Windows Update Stack Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43530 was published Nov 12, 2024
Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an... High Unreviewed
CVE-2023-22293 was published Nov 7, 2024
RabbitMQ HTTP API's queue deletion endpoint does not verify that the user has a required permission High
CVE-2024-51988 was published for rabbit_common (Erlang) Nov 6, 2024
bedla anhanhnguyen
michaelklishin
Sourcecodester Human Resource Management System 1.0 is vulnerable to Insecure Permissions... High Unreviewed
CVE-2024-34221 was published May 14, 2024
Shenzhen Haichangxing Technology Co., Ltd HCX H822 4G LTE Router M7628NNxISPxUIv2_v1.0.1557.15... High Unreviewed
CVE-2024-44667 was published Sep 10, 2024
Permission management vulnerability in the lock screen module.Successful exploitation of this... High Unreviewed
CVE-2023-52362 was published Feb 18, 2024
Broken access control in the component /admin/management/users of School Fees Management System... High Unreviewed
CVE-2023-49982 was published Mar 21, 2024
Improper access control in PAM JIT elevation in Devolutions Server 2024.1.6 and earlier allows an... High Unreviewed
CVE-2024-2915 was published Mar 26, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed
CVE-2023-42860 was published Feb 21, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 is vulnerable to Incorrect Access Control. Attackers are... High Unreviewed
CVE-2023-46992 was published Oct 31, 2023
Improper access control in some Intel(R) VROC software before version 8.0.8.1001 may allow an... High Unreviewed
CVE-2023-31271 was published Oct 28, 2024
Studio 42 elFinder vulnerable to Incorrect Access Control High
CVE-2024-38909 was published for studio-42/elfinder (Composer) Jul 30, 2024
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an... High Unreviewed
CVE-2023-38561 was published Oct 25, 2024
Improper access control in some Intel(R) XTU software before version 7.12.0.29 may allow an... High Unreviewed
CVE-2023-32647 was published Oct 25, 2024
Improper Input Validation in sopel-plugins.channelmgnt High
CVE-2021-21431 was published for sopel-plugins.channelmgnt (pip) Apr 9, 2021
Insufficient access checks in Visual Planning Admin Center 8 before v.1 Build 240207 allow... High Unreviewed
CVE-2023-49233 was published Sep 3, 2024
Improper access control element in some Intel(R) Ethernet tools and driver install software,... High Unreviewed
CVE-2023-39432 was published Oct 24, 2024
Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1,... High Unreviewed
CVE-2023-36497 was published Sep 11, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database