Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,736
Maven
5,000+
npm
4,336
NuGet
764
pip
4,110
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

156 advisories

Loading
Incorrect Privilege Assignment vulnerability in AllAccessible Team Accessibility by AllAccessible... High Unreviewed
CVE-2024-49644 was published Jan 7, 2025
Karmada PULL Mode Cluster Privilege Escalation High
CVE-2024-56513 was published for github.com/karmada-io/karmada (Go) Jan 3, 2025
zhzhuang-zju RainbowMango
SHIRO-BAKO suidpit TheZ3ro
Credited to zhzhuang-zju, RainbowMango, SHIRO-BAKO, suidpit, and TheZ3ro
A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to... High Unreviewed
CVE-2024-52048 was published Dec 31, 2024
A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to... High Unreviewed
CVE-2024-52049 was published Dec 31, 2024
A vulnerability, which was classified as critical, was found in X1a0He Adobe Downloader up to 1.3... High Unreviewed
CVE-2024-12786 was published Dec 19, 2024
Incorrect Privilege Assignment vulnerability in Halim KH Easy User Settings allows Privilege... High Unreviewed
CVE-2024-54365 was published Dec 16, 2024
A vulnerability has been identified in Spectrum Power 7 (All versions < V24Q3). The affected... High Unreviewed
CVE-2024-29119 was published Nov 12, 2024
Incorrect Privilege Assignment vulnerability in Azexo Marketing Automation by AZEXO allows... High Unreviewed
CVE-2024-50506 was published Oct 30, 2024
Incorrect Privilege Assignment vulnerability in Matt Whiteman Bulk Change Role allows Privilege... High Unreviewed
CVE-2024-50504 was published Oct 30, 2024
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows... High Unreviewed
CVE-2024-50550 was published Oct 29, 2024
Incorrect Privilege Assignment vulnerability in Stack Themes Bstone Demo Importer allows... High Unreviewed
CVE-2024-50481 was published Oct 29, 2024
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2... High Unreviewed
CVE-2024-47904 was published Oct 23, 2024
: Incorrect Privilege Assignment vulnerability in Gerry Ntabuhashe GERRYWORKS Post by Mail allows... High Unreviewed
CVE-2024-49608 was published Oct 20, 2024
Incorrect Privilege Assignment vulnerability in themexpo RS-Members allows Privilege Escalation... High Unreviewed
CVE-2024-49219 was published Oct 17, 2024
Vault Community Edition privilege escalation vulnerability High
CVE-2024-9180 was published for github.com/hashicorp/vault (Go) Oct 10, 2024
westonsteimel
Credited to westonsteimel
The UserPlus plugin for WordPress is vulnerable to unauthorized modification of data due to an... High Unreviewed
CVE-2024-9519 was published Oct 10, 2024
This vulnerability exists in Shilpi Client Dashboard due to lack of authorization for... High Unreviewed
CVE-2024-47653 was published Oct 4, 2024
Privilege Escalation vulnerability in favethemes Houzez Login Register houzez-login-register.This... High Unreviewed
CVE-2024-21743 was published Sep 17, 2024
Incorrect Privilege Assignment vulnerability in favethemes Houzez houzez allows Privilege... High Unreviewed
CVE-2024-22303 was published Sep 17, 2024
The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in... High Unreviewed
CVE-2024-8253 was published Sep 11, 2024
IBM MQ Operator 2.0.26 and 3.2.4 could allow an authenticated user in a specifically defined role... High Unreviewed
CVE-2024-40681 was published Sep 7, 2024
Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account... High Unreviewed
CVE-2024-4555 was published Aug 28, 2024
Dell Power Manager (DPM), versions 3.15.0 and prior, contains an Incorrect Privilege Assignment... High Unreviewed
CVE-2024-39576 was published Aug 22, 2024
In multiple functions of AppOpsService.java, there is a possible way for unprivileged apps to... High Unreviewed
CVE-2024-34738 was published Aug 16, 2024
Incorrect privilege assignment vulnerability exists in SKYSEA Client View Ver.6.010.06 to Ver.19... High Unreviewed
CVE-2024-41139 was published Jul 29, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database