GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,304 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Incorrect Authorization vulnerability in Drupal Content Entity Clone allows Forceful Browsing... Moderate Unreviewed

CVE-2024-13271 was published Jan 9, 2025

Incorrect Authorization vulnerability in Drupal Diff allows Functionality Misuse.This issue... Critical Unreviewed

CVE-2024-13278 was published Jan 9, 2025

Incorrect Authorization vulnerability in Drupal Smart IP Ban allows Forceful Browsing.This issue... Critical Unreviewed

CVE-2024-13277 was published Jan 9, 2025

Incorrect Authorization vulnerability in Drupal Monster Menus allows Forceful Browsing.This issue... Critical Unreviewed

CVE-2024-13281 was published Jan 9, 2025

Incorrect Authorization vulnerability in Drupal Advanced PWA inc Push Notifications allows... Critical Unreviewed

CVE-2024-13253 was published Jan 9, 2025

Incorrect Authorization vulnerability in Drupal Commerce View Receipt allows Forceful Browsing... Moderate Unreviewed

CVE-2024-13257 was published Jan 9, 2025

Incorrect Authorization vulnerability in Drupal Drupal REST & JSON API Authentication allows... Critical Unreviewed

CVE-2024-13258 was published Jan 9, 2025

A vulnerability in the firewall component of HPE Aruba Networking CX 10000 Series Switches ... Low Unreviewed

CVE-2024-54010 was published Jan 8, 2025

The WebChannel API, which is used to transport various information across processes, did not... Moderate Unreviewed

CVE-2025-0237 was published Jan 7, 2025

An improper access control vulnerability exists in SimplCommerce at commit... High Unreviewed

CVE-2024-50945 was published Dec 27, 2024

There is an improper authorization vulnerability in some Huawei smartphones. An attacker could... Low Unreviewed

CVE-2020-9081 was published Dec 27, 2024

Some Honor products are affected by incorrect privilege assignment vulnerability, successful... Low Unreviewed

CVE-2024-47157 was published Dec 26, 2024

Some Honor products are affected by incorrect privilege assignment vulnerability, successful... Moderate Unreviewed

CVE-2024-47148 was published Dec 26, 2024

oc_huff_tree_unpack in huffdec.c in libtheora in Theora through 1.0 7180717 has an invalid... Critical Unreviewed

CVE-2024-56431 was published Dec 25, 2024

IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a... Moderate Unreviewed

CVE-2024-47102 was published Dec 25, 2024

In JetBrains TeamCity before 2024.12 improper access control allowed viewing details of... Moderate Unreviewed

CVE-2024-56348 was published Dec 20, 2024

In JetBrains TeamCity before 2024.12 build credentials allowed unauthorized viewing of projects Moderate Unreviewed

CVE-2024-56350 was published Dec 20, 2024

Arista NG Firewall uvm_login Incorrect Authorization Privilege Escalation Vulnerability. This... Moderate Unreviewed

CVE-2024-12831 was published Dec 20, 2024

Incorrect authorization vulnerability in HTTP POST method in Govee Home application on Android... Critical Unreviewed

CVE-2023-4617 was published Dec 19, 2024

Dante 1.4.0 through 1.4.3 (fixed in 1.4.4) has incorrect access control for some sockd.conf... Critical Unreviewed

CVE-2024-54662 was published Dec 17, 2024

The Easy Digital Downloads plugin for WordPress is vulnerable to Improper Authorization in... Low Unreviewed

CVE-2024-9654 was published Dec 17, 2024

Incorrect access control in Sunbird DCIM dcTrack v9.1.2 allows attackers to create or update a... High Unreviewed

CVE-2024-37775 was published Dec 17, 2024

An issue was discovered in GitLab CE/EE affecting all versions from 15.0 prior to 17.4.6, 17.5... Moderate Unreviewed

CVE-2024-8650 was published Dec 16, 2024

An issue has been discovered in GitLab CE/EE affecting all versions from 16.9 before 17.4.6, 17.5... Moderate Unreviewed

CVE-2024-8116 was published Dec 16, 2024

An issue has been discovered in GitLab EE affecting all versions starting from 14.3 before 17.4.6... Low Unreviewed

CVE-2024-10043 was published Dec 12, 2024

Previous 1…13…93 Next

Previous 1 2 … 11 12 13 14 15 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,304 advisories