Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+

340 advisories

Loading
A privilege escalation vulnerability was reported in some Lenovo tablet products that could allow... Moderate Unreviewed
CVE-2023-5080 was published Jan 19, 2024
Nomad ACL Policies without Label are Applied to Unexpected Resources Moderate
CVE-2023-3072 was published for github.com/hashicorp/nomad (Go) Jul 20, 2023
anonymous4ACL24
Credited to anonymous4ACL24
Nomad Search API Leaks Information About CSI Plugins Moderate
CVE-2023-3300 was published for github.com/hashicorp/nomad (Go) Jul 20, 2023
anonymous4ACL24
Credited to anonymous4ACL24
IBM CICS Transaction Gateway 9.3 could allow a user to transfer or view files due to improper... Moderate Unreviewed
CVE-2023-47140 was published Jan 8, 2024
A remote code execution (RCE) vulnerability in the component /admin/store.php of Emlog Pro before... Moderate Unreviewed
CVE-2024-46540 was published Sep 30, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.1 before 15... Moderate Unreviewed
CVE-2023-2485 was published Jun 7, 2023
An issue has been discovered in GitLab EE affecting all versions starting from 16.5 before 16.7.6... Moderate Unreviewed
CVE-2023-6477 was published Feb 22, 2024
The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows... Moderate Unreviewed
CVE-2024-48941 was published Oct 10, 2024
Incorrect Privilege Assignment vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R... Moderate Unreviewed
CVE-2023-6815 was published Feb 13, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2024-20466 was published Aug 21, 2024
A vulnerability has been found in TOTOLINK LR350 up to 9.3.5u.6369 and classified as critical.... Moderate Unreviewed
CVE-2024-10654 was published Nov 1, 2024
A vulnerability classified as critical was found in Codezips Online Institute Management System... Moderate Unreviewed
CVE-2024-10765 was published Nov 4, 2024
A vulnerability classified as critical has been found in Codezips Online Institute Management... Moderate Unreviewed
CVE-2024-10764 was published Nov 4, 2024
A vulnerability, which was classified as critical, has been found in Codezips Free Exam Hall... Moderate Unreviewed
CVE-2024-10766 was published Nov 4, 2024
Dell PowerProtect Data Domain, versions prior to 8.1.0.0, 7.13.1.10, 7.10.1.40, and 7.7.5.50,... Moderate Unreviewed
CVE-2024-45759 was published Nov 8, 2024
An attacker who gains local membership to sapsys group could replace local files usually... Moderate Unreviewed
CVE-2024-47595 was published Nov 12, 2024
A vulnerability in Grafana Labs Grafana OSS and Enterprise allows Privilege Escalation allows... Moderate Unreviewed
CVE-2024-9476 was published Nov 13, 2024
A vulnerability, which was classified as critical, has been found in Altenergy Power Control... Moderate Unreviewed
CVE-2024-11306 was published Nov 18, 2024
Hwameistor Potential Permission Leakage of Cluster Level Moderate
CVE-2024-45054 was published for github.com/hwameistor/hwameistor (Go) Aug 29, 2024
younaman
Credited to younaman
A vulnerability classified as problematic has been found in SourceCodester Hospital Management... Moderate Unreviewed
CVE-2024-11073 was published Nov 11, 2024
A vulnerability, which was classified as problematic, was found in Code4Berry Decoration... Moderate Unreviewed
CVE-2024-11486 was published Nov 20, 2024
A vulnerability, which was classified as critical, has been found in Code4Berry Decoration... Moderate Unreviewed
CVE-2024-11485 was published Nov 20, 2024
A vulnerability classified as critical was found in Code4Berry Decoration Management System 1.0.... Moderate Unreviewed
CVE-2024-11484 was published Nov 20, 2024
IBM Jazz Foundation 7.0.2 and 7.0.3  could allow a user to change their dashboard using a... Moderate Unreviewed
CVE-2023-26280 was published Nov 25, 2024
Mage AI incorrectly gives privileges to users with deleted accounts Moderate
CVE-2024-45187 was published for mage-ai (pip) Aug 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database