GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
975 advisories
Filter by severity
Trimble TM4Web 22.2.0 allows unauthenticated attackers to access /inc/tm_ajax.msw?func...
Critical
Unreviewed
CVE-2023-27195
was published
Nov 8, 2024
The Goodwy com.goodwy.dialer (aka Right Dialer) application through 5.1.0 for Android enables any...
High
Unreviewed
CVE-2024-36063
was published
Nov 8, 2024
An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. By default, the...
High
Unreviewed
CVE-2019-20458
was published
Nov 7, 2024
An issue was discovered on Brother MFC-J491DW C1806180757 devices. The printer's web-interface...
Critical
Unreviewed
CVE-2019-20457
was published
Nov 7, 2024
An issue was discovered in Lush 2 through 2020-02-25. Due to the lack of Bluetooth traffic...
High
Unreviewed
CVE-2020-11921
was published
Nov 7, 2024
The Okta Device Access features, provided by the Okta Verify agent for Windows, provides access...
High
Unreviewed
CVE-2024-9191
was published
Nov 2, 2024
getresetstatus in dns/views.py and ftp/views.py in CyberPanel (aka Cyber Panel) before 1c0c6cb...
Critical
Unreviewed
CVE-2024-51378
was published
Oct 30, 2024
upgrademysqlstatus in databases/views.py in CyberPanel (aka Cyber Panel) before 5b08cd6 allows...
Critical
Unreviewed
CVE-2024-51567
was published
Oct 30, 2024
A User enumeration vulnerability in AquilaCMS 1.409.20 and prior allows unauthenticated attackers...
Unknown
Unreviewed
CVE-2024-48572
was published
Oct 30, 2024
This issue was addressed with improved permissions checking. This issue is fixed in Xcode 16. An...
High
Unreviewed
CVE-2024-44228
was published
Oct 28, 2024
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS...
Low
Unreviewed
CVE-2024-40792
was published
Oct 28, 2024
A Local privilege escalation vulnerability found in a Self-Hosted UniFi Network Server with UniFi...
High
Unreviewed
CVE-2024-42028
was published
Oct 28, 2024
VINCE versions before 3.0.9 is vulnerable to exposure of User information to authenticated users.
Moderate
Unreviewed
CVE-2024-10469
was published
Oct 28, 2024
Incorrect default permissions in some Intel(R) VROC software before version 8.0.8.1001 may allow...
High
Unreviewed
CVE-2023-34315
was published
Oct 28, 2024
OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request...
Critical
Unreviewed
CVE-2022-30355
was published
Oct 25, 2024
there is a possible privilege escalation due to an insecure default value. This could lead to...
High
Unreviewed
CVE-2024-47016
was published
Oct 25, 2024
In pmucal_rae_handle_seq_int of flexpmu_cal_rae.c, there is a possible arbitrary write due to...
High
Unreviewed
CVE-2024-47013
was published
Oct 25, 2024
In mm_GetMobileIdIndexForNsUpdate of mm_GmmPduCodec.c, there is a possible out of bounds write...
High
Unreviewed
CVE-2024-47012
was published
Oct 25, 2024
Incorrect default permissions in some ACAT software maintained by Intel(R) before version 2.0.0...
High
Unreviewed
CVE-2023-41231
was published
Oct 24, 2024
Incorrect default permissions in the Intel(R) SUR for Gameplay Software before version 2.0.1901...
High
Unreviewed
CVE-2023-40154
was published
Oct 23, 2024
The ProfilePress Pro plugin for WordPress is vulnerable to authentication bypass in all versions...
High
Unreviewed
CVE-2024-9947
was published
Oct 23, 2024
Incorrect Default Permissions vulnerability in GenBroker32, which is included in the installers...
High
Unreviewed
CVE-2024-7587
was published
Oct 23, 2024
A vulnerability in Jamf Pro's Jamf Remote Assist tool allows a local, non-privileged user to...
Moderate
Unreviewed
CVE-2024-10183
was published
Oct 22, 2024
ProTip!
Advisories are also available from the
GraphQL API