Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,361 advisories

Loading
In certain conditions a request directed to the Waybox Enel X Web management application could... Moderate Unreviewed
CVE-2023-29115 was published Nov 5, 2024
Waybox Enel TCF Agent service could be used to get administrator’s privileges over the Waybox... Critical Unreviewed
CVE-2023-29121 was published Nov 5, 2024
Moodle BigBlueButton web service leaks meeting joining information Moderate
CVE-2024-38273 was published for moodle/moodle (Composer) Jun 18, 2024
RabbitMQ HTTP API's queue deletion endpoint does not verify that the user has a required permission High
CVE-2024-51988 was published for rabbit_common (Erlang) Nov 6, 2024
bedla anhanhnguyen
michaelklishin
Access control vulnerable to user data deletion by anonynmous users Moderate
CVE-2024-51734 was published for AccessControl (pip) Nov 4, 2024
n1k9 d-maurer
perrinjerome dataflake
Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an... High Unreviewed
CVE-2023-22293 was published Nov 7, 2024
Dell PowerProtect DD, versions prior to 8.1.0.0, 7.13.1.10, 7.10.1.40, and 7.7.5.50, contains an... Moderate Unreviewed
CVE-2024-48010 was published Nov 8, 2024
A vulnerability has been found in Codezips Online Institute Management System 1.0 and classified... Moderate Unreviewed
CVE-2024-10994 was published Nov 8, 2024
A vulnerability, which was classified as critical, was found in Codezips Online Institute... Moderate Unreviewed
CVE-2024-10993 was published Nov 8, 2024
The Zotpress plugin for WordPress is vulnerable to unauthorized modification of data due to a... Moderate Unreviewed
CVE-2024-7429 was published Nov 5, 2024
Incorrect access control in Solar-Log 1000 before v2.8.2 and build 52- 23.04.2013 allows... Critical Unreviewed
CVE-2024-40117 was published Jul 26, 2024
Umbraco CMS Improper Access Control Vulnerability Allows Low-Privilege Users to Access Webhook API Low
CVE-2024-48925 was published for Umbraco.CMS (NuGet) Oct 22, 2024
thanhlam-attt
A vulnerability, which was classified as critical, has been found in ???????????? Lingdang CRM up... Moderate Unreviewed
CVE-2024-11122 was published Nov 12, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All... Moderate Unreviewed
CVE-2024-50558 was published Nov 12, 2024
APTIOV contains a vulnerability in BIOS where may cause Improper Access Control by a local... Moderate Unreviewed
CVE-2024-2315 was published Nov 12, 2024
A vulnerability classified as problematic has been found in DedeCMS 5.7.116. This affects an... Moderate Unreviewed
CVE-2024-11138 was published Nov 12, 2024
Windows Update Stack Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-43530 was published Nov 12, 2024
Visual Studio Code Remote Extension Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49049 was published Nov 12, 2024
Visual Studio Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-49044 was published Nov 12, 2024
A vulnerability classified as problematic has been found in CodeAstro Real Estate Management... Moderate Unreviewed
CVE-2024-10999 was published Nov 8, 2024
A vulnerability classified as problematic was found in CodeAstro Real Estate Management System 1... Moderate Unreviewed
CVE-2024-11000 was published Nov 8, 2024
Improper access control in some JAM STAPL Player software before version 2.6.1 may allow an... Moderate Unreviewed
CVE-2024-29077 was published Nov 13, 2024
Improper access control for some Intel(R) Arc(TM) Pro Graphics for Windows drivers before version... Moderate Unreviewed
CVE-2024-32044 was published Nov 13, 2024
Improper access control for some Intel(R) EMA software before version 1.13.1.0 may allow an... High Unreviewed
CVE-2024-32483 was published Nov 13, 2024
Improper Access Control in some Thunderbolt(TM) Share software before version 1.0.49.9 may allow... Moderate Unreviewed
CVE-2024-34022 was published Nov 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database