Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,096
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

80 advisories

Loading
A vulnerability was found in Guangzhou Huayi Intelligent Technology Jeewms up to 1.0.0 and... Moderate Unreviewed
CVE-2024-12347 was published Dec 9, 2024
A vulnerability was found in Shenzhen Dashi Tongzhou Information Technology AgileBPM up to 1.0.0.... Moderate Unreviewed
CVE-2024-12235 was published Dec 5, 2024
A vulnerability classified as critical has been found in SourceCodester Best House Rental... Moderate Unreviewed
CVE-2024-11860 was published Nov 27, 2024
IBM Jazz Foundation 7.0.2 and 7.0.3  could allow a user to change their dashboard using a... Moderate Unreviewed
CVE-2023-26280 was published Nov 25, 2024
A vulnerability, which was classified as problematic, was found in Code4Berry Decoration... Moderate Unreviewed
CVE-2024-11486 was published Nov 20, 2024
A vulnerability classified as critical was found in Code4Berry Decoration Management System 1.0.... Moderate Unreviewed
CVE-2024-11484 was published Nov 20, 2024
A vulnerability, which was classified as critical, has been found in Code4Berry Decoration... Moderate Unreviewed
CVE-2024-11485 was published Nov 20, 2024
A vulnerability, which was classified as critical, has been found in Altenergy Power Control... Moderate Unreviewed
CVE-2024-11306 was published Nov 18, 2024
Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or... Moderate Unreviewed
CVE-2024-10978 was published Nov 14, 2024
A vulnerability in Grafana Labs Grafana OSS and Enterprise allows Privilege Escalation allows... Moderate Unreviewed
CVE-2024-9476 was published Nov 13, 2024
An attacker who gains local membership to sapsys group could replace local files usually... Moderate Unreviewed
CVE-2024-47595 was published Nov 12, 2024
A vulnerability classified as problematic has been found in SourceCodester Hospital Management... Moderate Unreviewed
CVE-2024-11073 was published Nov 11, 2024
Dell PowerProtect Data Domain, versions prior to 8.1.0.0, 7.13.1.10, 7.10.1.40, and 7.7.5.50,... Moderate Unreviewed
CVE-2024-45759 was published Nov 8, 2024
A vulnerability classified as critical has been found in Codezips Online Institute Management... Moderate Unreviewed
CVE-2024-10764 was published Nov 4, 2024
A vulnerability, which was classified as critical, has been found in Codezips Free Exam Hall... Moderate Unreviewed
CVE-2024-10766 was published Nov 4, 2024
A vulnerability classified as critical was found in Codezips Online Institute Management System... Moderate Unreviewed
CVE-2024-10765 was published Nov 4, 2024
A vulnerability has been found in TOTOLINK LR350 up to 9.3.5u.6369 and classified as critical.... Moderate Unreviewed
CVE-2024-10654 was published Nov 1, 2024
The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows... Moderate Unreviewed
CVE-2024-48941 was published Oct 10, 2024
A remote code execution (RCE) vulnerability in the component /admin/store.php of Emlog Pro before... Moderate Unreviewed
CVE-2024-46540 was published Sep 30, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contains an incorrect privilege assignment... Moderate Unreviewed
CVE-2024-39579 was published Aug 31, 2024
Hwameistor Potential Permission Leakage of Cluster Level Moderate
CVE-2024-45054 was published for github.com/hwameistor/hwameistor (Go) Aug 29, 2024
younaman
Mage AI incorrectly gives privileges to users with deleted accounts Moderate
CVE-2024-45187 was published for mage-ai (pip) Aug 23, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2024-20466 was published Aug 21, 2024
Grafana plugin data sources vulnerable to access control bypass Moderate
CVE-2024-6322 was published for github.com/grafana/grafana (Go) Aug 20, 2024
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an incorrect privilege assignment... Moderate Unreviewed
CVE-2024-37132 was published Jul 2, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database