Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

619 advisories

Loading
In TOTOLINK EX200 V4.0.3c.7314_B20191204, an attacker can obtain the configuration file without... Critical Unreviewed
CVE-2024-31815 was published Apr 8, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This... Moderate Unreviewed
CVE-2024-31291 was published Apr 7, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Repute Infosystems BookingPress... Moderate Unreviewed
CVE-2024-31296 was published Apr 7, 2024
Grafana: Users outside an organization can delete a snapshot with its key High
CVE-2024-1313 was published for github.com/grafana/grafana (Go) Apr 5, 2024
jaypanu42 PlayerX555
aviv320i
Authorization Bypass Through User-Controlled Key vulnerability in ExtremePacs Extreme XDS allows... High Unreviewed
CVE-2023-6523 was published Apr 5, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Ricard Torres Thumbs Rating... Critical Unreviewed
CVE-2024-31095 was published Mar 31, 2024
Authorization Bypass Through User-Controlled Key vulnerability in UPQODE Whizz.This issue affects... Moderate Unreviewed
CVE-2024-30543 was published Mar 31, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This... Moderate Unreviewed
CVE-2024-30513 was published Mar 29, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Molongui.This issue affects... Low Unreviewed
CVE-2024-30507 was published Mar 29, 2024
Duplicate Advisory: Grafana vulnerable to authorization bypass Moderate
GHSA-mh7p-8m2f-qrm6 was published for github.com/grafana/grafana (Go) Mar 26, 2024 withdrawn
OneUptime Vulnerable to a Privilege Escalation via Local Storage Key Manipulation High
CVE-2024-29194 was published for @oneuptime/common-server (npm) Mar 25, 2024
saunders-jake
Improper authorization in the report management and creation module of BMC Control-M branches 9.0... Moderate Unreviewed
CVE-2024-1604 was published Mar 18, 2024
A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and... High Unreviewed
CVE-2024-2577 was published Mar 18, 2024
A vulnerability classified as critical was found in SourceCodester Employee Task Management... High Unreviewed
CVE-2024-2574 was published Mar 18, 2024
A vulnerability, which was classified as critical, has been found in SourceCodester Employee Task... High Unreviewed
CVE-2024-2575 was published Mar 18, 2024
A vulnerability, which was classified as critical, was found in SourceCodester Employee Task... High Unreviewed
CVE-2024-2576 was published Mar 18, 2024
An authorization bypass was discovered in the Carrier MASmobile Classic application through 1.16... Moderate Unreviewed
CVE-2023-36483 was published Mar 16, 2024
An authorization bypass through user-controlled key vulnerability [CWE-639] in FortiOS version 7... High Unreviewed
CVE-2024-23112 was published Mar 12, 2024
Authorization Bypass Through User-Controlled Key in go-zero Critical
CVE-2024-27302 was published for github.com/zeromicro/go-zero (Go) Mar 4, 2024
cokeBeer
Authorization Bypass Through User-Controlled Key vulnerability in NetIQ (OpenText) Client Login... High Unreviewed
CVE-2024-1470 was published Feb 29, 2024
Authorization Bypass in moodle Low
CVE-2024-25983 was published for moodle/moodle (Composer) Feb 19, 2024
Ellucian Banner 9.17 allows Insecure Direct Object Reference (IDOR) via a modified bannerId to... Moderate Unreviewed
CVE-2023-49339 was published Feb 13, 2024
The MapPress Maps for WordPress plugin before 2.88.16 does not ensure that posts to be retrieve... Moderate Unreviewed
CVE-2024-0421 was published Feb 12, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Software Engineering... High Unreviewed
CVE-2023-6724 was published Feb 9, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Mia Technology Inc. MİA-MED... High Unreviewed
CVE-2023-6515 was published Feb 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database