GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,400
Composer 4,386
Erlang 33
GitHub Actions 22
Go 2,141
Maven 5,315
npm 3,803
NuGet 687
pip 3,480
Pub 12
RubyGems 897
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,649

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

774 advisories

Filter by severity

Sort by

Least recently updated

Adobe Commerce versions 2.4.7-beta1 (and earlier), 2.4.6-p2 (and earlier), 2.4.5-p4 (and earlier)... High Unreviewed

CVE-2023-38218 was published Oct 13, 2023

There is an interface unauthorized access vulnerability in the background of Tencent Enterprise... High Unreviewed

CVE-2023-40829 was published Oct 12, 2023

Incorrect Authorization in GitHub repository tiann/kernelsu prior to v0.6.9. High Unreviewed

CVE-2023-5521 was published Oct 11, 2023

An incorrect authorization vulnerability [CWE-863] in FortiMail webmail version 7.2.0 through 7.2... High Unreviewed

CVE-2023-36556 was published Oct 10, 2023

An issue in NETIS SYSTEMS N3Mv2 v.1.0.1.865 allows a remote attacker to cause a denial of service... High Unreviewed

CVE-2023-44860 was published Oct 7, 2023

A flaw was found in OpenShift API, as admission checks do not enforce "custom-host" permissions.... High Unreviewed

CVE-2022-3248 was published Oct 5, 2023

An improper access control flaw was found in Candlepin. An attacker can create data scoped under... High Unreviewed

CVE-2023-1832 was published Oct 4, 2023

Improper authorisation of regular users in ProIntegra Uptime DC software (versions below 2.0.0... High Unreviewed

CVE-2023-4997 was published Oct 4, 2023

An issue has been discovered in Ultimate-licensed GitLab EE affecting all versions starting 13.12... High Unreviewed

CVE-2023-5106 was published Oct 2, 2023

** UNSUPPPORTED WHEN ASSIGNED ** Incorrect authorisation in ekorCCP and ekorRCI, which could... High Unreviewed

CVE-2022-47553 was published Sep 19, 2023

Weak access control in Wing FTP Server (Admin Web Client) allows for privilege escalation.This... High Unreviewed

CVE-2023-37881 was published Sep 15, 2023

A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which... High Unreviewed

CVE-2023-4814 was published Sep 14, 2023

A vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress... High Unreviewed

CVE-2023-20191 was published Sep 13, 2023

IBM Aspera Faspex 5.0.5 could allow a malicious actor to bypass IP whitelist restrictions using a... High Unreviewed

CVE-2023-30995 was published Sep 8, 2023

The Media from FTP WordPress plugin before 11.17 does not properly limit who can use the plugin,... High Unreviewed

CVE-2023-4019 was published Sep 4, 2023

A vulnerability was found in subscription-manager that allows local privilege escalation due to... High Unreviewed

CVE-2023-3899 was published Aug 23, 2023

TN-5900 Series firmware version v3.3 and prior is vulnerable to improper-authentication... High Unreviewed

CVE-2023-33237 was published Aug 17, 2023

Vulnerability of incomplete permission verification in the input method module. Successful... High Unreviewed

CVE-2023-39384 was published Aug 13, 2023

Improper access control in the Intel(R) CSME software installer before version 2239.3.7.0 may... High Unreviewed

CVE-2022-29871 was published Aug 11, 2023

The ACL (Access Control List) of SAP Message Server - versions KERNEL 7.22, KERNEL 7.53, KERNEL 7... High Unreviewed

CVE-2023-37491 was published Aug 8, 2023

The event analysis component in Zoho ManageEngine ADAudit Plus 7.1.1 allows an attacker to bypass... High Unreviewed

CVE-2023-32783 was published Aug 7, 2023

Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data... High Unreviewed

CVE-2023-32629 was published Jul 26, 2023

On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission... High Unreviewed

CVE-2023-2640 was published Jul 26, 2023

An access control issue in WebBoss.io CMS v3.7.0 allows attackers to access the Website Backup... High Unreviewed

CVE-2023-36339 was published Jul 21, 2023

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain... High Unreviewed

CVE-2022-26563 was published Jul 18, 2023

Previous 1 2 … 5 6 7 8 9 … 30 31 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

774 advisories