GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,147
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,762
NuGet 678
pip 3,447
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,634

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

189 advisories

Filter by severity

Sort by

Least recently updated

The UserPlus plugin for WordPress is vulnerable to unauthorized modification of data due to an... High Unreviewed

CVE-2024-9519 was published Oct 10, 2024

Improper privilege management vulnerability in MMIGroup prior to SMR Aug-2023 Release 1 allows... High Unreviewed

CVE-2023-30680 was published Aug 10, 2023

The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows... Moderate Unreviewed

CVE-2024-48941 was published Oct 10, 2024

Parcel mismatch in AuthenticationConfig prior to SMR Aug-2023 Release 1 allows local attacker to... High Unreviewed

CVE-2023-30691 was published Aug 10, 2023

This vulnerability exists in Shilpi Client Dashboard due to lack of authorization for... High Unreviewed

CVE-2024-47653 was published Oct 4, 2024

The UserPro plugin for WordPress is vulnerable to privilege escalation in versions up to, and... Critical Unreviewed

CVE-2024-9863 was published Oct 17, 2024

Incorrect Privilege Assignment vulnerability in CodePassenger Job Board Manager for WordPress... Critical Unreviewed

CVE-2024-49322 was published Oct 17, 2024

Incorrect Privilege Assignment vulnerability in Madiri Salman Aashish Adding drop down roles in... Critical Unreviewed

CVE-2024-49217 was published Oct 17, 2024

Incorrect Privilege Assignment vulnerability in themexpo RS-Members allows Privilege Escalation... High Unreviewed

CVE-2024-49219 was published Oct 17, 2024

Vault Community Edition privilege escalation vulnerability High

CVE-2024-9180 was published for github.com/hashicorp/vault (Go) Oct 10, 2024

: Incorrect Privilege Assignment vulnerability in Gerry Ntabuhashe GERRYWORKS Post by Mail allows... High Unreviewed

CVE-2024-49608 was published Oct 20, 2024

Incorrect Privilege Assignment vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R... Moderate Unreviewed

CVE-2023-6815 was published Feb 13, 2024

A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2... High Unreviewed

CVE-2024-47904 was published Oct 23, 2024

Incorrect Privilege Assignment vulnerability in Stack Themes Bstone Demo Importer allows... High Unreviewed

CVE-2024-50481 was published Oct 29, 2024

: Incorrect Privilege Assignment vulnerability in Udit Rawat Exam Matrix allows Privilege... Critical Unreviewed

CVE-2024-50485 was published Oct 29, 2024

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows... High Unreviewed

CVE-2024-50550 was published Oct 29, 2024

Incorrect Privilege Assignment vulnerability in Azexo Marketing Automation by AZEXO allows... High Unreviewed

CVE-2024-50506 was published Oct 30, 2024

Incorrect Privilege Assignment vulnerability in Matt Whiteman Bulk Change Role allows Privilege... High Unreviewed

CVE-2024-50504 was published Oct 30, 2024

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed

CVE-2024-20466 was published Aug 21, 2024

A vulnerability has been found in TOTOLINK LR350 up to 9.3.5u.6369 and classified as critical.... Moderate Unreviewed

CVE-2024-10654 was published Nov 1, 2024

A vulnerability classified as critical has been found in Codezips Online Institute Management... Moderate Unreviewed

CVE-2024-10764 was published Nov 4, 2024

A vulnerability, which was classified as critical, has been found in Codezips Free Exam Hall... Moderate Unreviewed

CVE-2024-10766 was published Nov 4, 2024

A vulnerability classified as critical was found in Codezips Online Institute Management System... Moderate Unreviewed

CVE-2024-10765 was published Nov 4, 2024

Dell PowerProtect Data Domain, versions prior to 8.1.0.0, 7.13.1.10, 7.10.1.40, and 7.7.5.50,... Moderate Unreviewed

CVE-2024-45759 was published Nov 8, 2024

An attacker who gains local membership to sapsys group could replace local files usually... Moderate Unreviewed

CVE-2024-47595 was published Nov 12, 2024

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

189 advisories