Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,464
Erlang
33
GitHub Actions
22
Go
2,163
Maven
5,000+
npm
3,821
NuGet
696
pip
3,502
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

88 advisories

Loading
GMOD Apollo does not have sufficient logical or access checks when updating a user's information.... High Unreviewed
CVE-2025-21092 was published Mar 5, 2025
This vulnerability exists in RupeeWeb trading platform due to insufficient authorization controls... High Unreviewed
CVE-2025-26523 was published Feb 14, 2025
An incorrect privilege assignment vulnerability [CWE-266] in Fortinet FortiOS version 7.6.0, 7.4... High Unreviewed
CVE-2024-40591 was published Feb 11, 2025
Incorrect Privilege Assignment vulnerability in wpase.com Admin and Site Enhancements (ASE)... High Unreviewed
CVE-2025-24648 was published Feb 4, 2025
Incorrect Privilege Assignment vulnerability in NotFound Admin and Site Enhancements (ASE) Pro... High Unreviewed
CVE-2024-43333 was published Feb 3, 2025
Software installed and run as a non-privileged user may conduct improper read/write operations on... High Unreviewed
CVE-2024-46974 was published Jan 31, 2025
Incorrect Privilege Assignment vulnerability in Wouter Dijkstra DD Roles allows Privilege... High Unreviewed
CVE-2025-23528 was published Jan 16, 2025
A incorrect privilege assignment in Fortinet FortiAnalyzer versions 7.4.0 through 7.4.3, 7.2.0... High Unreviewed
CVE-2024-45331 was published Jan 16, 2025
Incorrect Privilege Assignment vulnerability in WPExperts User Management allows Privilege... High Unreviewed
CVE-2025-22736 was published Jan 15, 2025
Incorrect Privilege Assignment vulnerability in Drupal Registration role allows Privilege... High Unreviewed
CVE-2024-13251 was published Jan 9, 2025
A vulnerability classified as critical has been found in REVE Antivirus 1.0.0.0 on Linux. This... High Unreviewed
CVE-2024-13206 was published Jan 9, 2025
Incorrect Privilege Assignment vulnerability in Amento Tech Pvt ltd WPGuppy allows Privilege... High Unreviewed
CVE-2024-56280 was published Jan 7, 2025
Incorrect Privilege Assignment vulnerability in AllAccessible Team Accessibility by AllAccessible... High Unreviewed
CVE-2024-49644 was published Jan 7, 2025
Karmada PULL Mode Cluster Privilege Escalation High
CVE-2024-56513 was published for github.com/karmada-io/karmada (Go) Jan 3, 2025
zhzhuang-zju RainbowMango
SHIRO-BAKO suidpit TheZ3ro
A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to... High Unreviewed
CVE-2024-52048 was published Dec 31, 2024
A LogServer link following vulnerability in Trend Micro Apex One could allow a local attacker to... High Unreviewed
CVE-2024-52049 was published Dec 31, 2024
A vulnerability, which was classified as critical, was found in X1a0He Adobe Downloader up to 1.3... High Unreviewed
CVE-2024-12786 was published Dec 19, 2024
Incorrect Privilege Assignment vulnerability in Halim KH Easy User Settings allows Privilege... High Unreviewed
CVE-2024-54365 was published Dec 16, 2024
A vulnerability has been identified in Spectrum Power 7 (All versions < V24Q3). The affected... High Unreviewed
CVE-2024-29119 was published Nov 12, 2024
Incorrect Privilege Assignment vulnerability in Azexo Marketing Automation by AZEXO allows... High Unreviewed
CVE-2024-50506 was published Oct 30, 2024
Incorrect Privilege Assignment vulnerability in Matt Whiteman Bulk Change Role allows Privilege... High Unreviewed
CVE-2024-50504 was published Oct 30, 2024
Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache allows... High Unreviewed
CVE-2024-50550 was published Oct 29, 2024
Incorrect Privilege Assignment vulnerability in Stack Themes Bstone Demo Importer allows... High Unreviewed
CVE-2024-50481 was published Oct 29, 2024
A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2... High Unreviewed
CVE-2024-47904 was published Oct 23, 2024
: Incorrect Privilege Assignment vulnerability in Gerry Ntabuhashe GERRYWORKS Post by Mail allows... High Unreviewed
CVE-2024-49608 was published Oct 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database