GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
454 advisories
Filter by severity
Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This...
Moderate
Unreviewed
CVE-2024-32772
was published
Apr 24, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This...
Moderate
Unreviewed
CVE-2024-32808
was published
Apr 24, 2024
Authorization Bypass Through User-Controlled Key vulnerability in FeedbackWP Rate my Post – WP...
Moderate
Unreviewed
CVE-2024-32823
was published
Apr 24, 2024
Webid v1.2.1 suffers from an Insecure Direct Object Reference (IDOR) - Broken Access Control...
High
Unreviewed
CVE-2024-32166
was published
Apr 19, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Wpmet Wp Ultimate Review.This...
Moderate
Unreviewed
CVE-2024-32683
was published
Apr 19, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Plechev Andrey WP-Recall.This...
Moderate
Unreviewed
CVE-2024-32604
was published
Apr 18, 2024
A potential security vulnerability has been identified in HPE FlexFabric and FlexNetwork series...
Moderate
Unreviewed
CVE-2024-22439
was published
Apr 15, 2024
An issue in ZKTeko BioTime v.8.5.4 and before allows a remote attacker to obtain sensitive...
Moderate
Unreviewed
CVE-2023-51141
was published
Apr 11, 2024
A prompt bypass exists in the secondscreen.gateway service running on webOS version 4 through 7....
High
Unreviewed
CVE-2023-6317
was published
Apr 9, 2024
Insecure Direct Object Reference (IDOR) in GNU Savane v.3.12 and before allows a remote attacker...
Unknown
Unreviewed
CVE-2024-27630
was published
Apr 8, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Repute Infosystems BookingPress...
Moderate
Unreviewed
CVE-2024-31296
was published
Apr 7, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This...
Moderate
Unreviewed
CVE-2024-31291
was published
Apr 7, 2024
Authorization Bypass Through User-Controlled Key vulnerability in ExtremePacs Extreme XDS allows...
High
Unreviewed
CVE-2023-6523
was published
Apr 5, 2024
Authorization Bypass Through User-Controlled Key vulnerability in UPQODE Whizz.This issue affects...
Moderate
Unreviewed
CVE-2024-30543
was published
Mar 31, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Ricard Torres Thumbs Rating...
Critical
Unreviewed
CVE-2024-31095
was published
Mar 31, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This...
Moderate
Unreviewed
CVE-2024-30513
was published
Mar 29, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Molongui.This issue affects...
Low
Unreviewed
CVE-2024-30507
was published
Mar 29, 2024
A vulnerability, which was classified as critical, has been found in SourceCodester Employee Task...
High
Unreviewed
CVE-2024-2575
was published
Mar 18, 2024
A vulnerability classified as critical was found in SourceCodester Employee Task Management...
High
Unreviewed
CVE-2024-2574
was published
Mar 18, 2024
A vulnerability, which was classified as critical, was found in SourceCodester Employee Task...
High
Unreviewed
CVE-2024-2576
was published
Mar 18, 2024
A vulnerability has been found in SourceCodester Employee Task Management System 1.0 and...
High
Unreviewed
CVE-2024-2577
was published
Mar 18, 2024
An authorization bypass was discovered in the Carrier MASmobile Classic application through 1.16...
Moderate
Unreviewed
CVE-2023-36483
was published
Mar 16, 2024
An authorization bypass through user-controlled key vulnerability [CWE-639] in FortiOS version 7...
High
Unreviewed
CVE-2024-23112
was published
Mar 12, 2024
Authorization Bypass Through User-Controlled Key vulnerability in NetIQ (OpenText) Client Login...
High
Unreviewed
CVE-2024-1470
was published
Feb 29, 2024
Authorization Bypass Through User-Controlled Key vulnerability in Software Engineering...
High
Unreviewed
CVE-2023-6724
was published
Feb 9, 2024
ProTip!
Advisories are also available from the
GraphQL API