Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

706 advisories

Loading
Missing Authorization vulnerability in theDotstore Advance Menu Manager.This issue affects... High Unreviewed
CVE-2024-54381 was published Dec 18, 2024
Missing Authorization vulnerability in VibeThemes WPLMS allows Accessing Functionality Not... High Unreviewed
CVE-2024-56048 was published Dec 18, 2024
In the development options section of the Settings app, there is a possible authentication bypass... High Unreviewed
CVE-2018-9477 was published Nov 20, 2024
In multiple functions of ShortcutService.java, there is a possible creation of a spoofed shortcut... High Unreviewed
CVE-2018-9469 was published Nov 20, 2024
In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings... High Unreviewed
CVE-2017-13314 was published Nov 16, 2024
Missing Authorization vulnerability in spreadr Spreadr Woocommerce allows Accessing Functionality... High Unreviewed
CVE-2024-56008 was published Dec 18, 2024
The CRM WordPress Plugin – RepairBuddy plugin for WordPress is vulnerable to privilege escalation... High Unreviewed
CVE-2024-12259 was published Dec 18, 2024
In multiple locations, there is a possible permissions bypass due to a missing null check. This... High Unreviewed
CVE-2024-34719 was published Nov 13, 2024
In wifi_item_edit_content of styles.xml , there is a possible FRP bypass due to Missing check for... High Unreviewed
CVE-2024-40650 was published Sep 11, 2024
In mayAdminGrantPermission of AdminRestrictedPermissionsUtils.java, there is a possible way to... High Unreviewed
CVE-2024-40661 was published Nov 13, 2024
In updateInternal of MediaProvider.java , there is a possible access of another app's files due... High Unreviewed
CVE-2024-43089 was published Nov 13, 2024
In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible way to achieve arbitrary... High Unreviewed
CVE-2024-40671 was published Nov 13, 2024
In multiple locations, there is a possible way to bypass a restriction on adding new Wi-Fi... High Unreviewed
CVE-2024-31332 was published Jul 9, 2024
In CompanionDeviceManagerService.java, there is a possible way to pair a companion device without... High Unreviewed
CVE-2024-31318 was published Jul 9, 2024
In onCreate of WifiDialogActivity.java, there is a possible way to bypass the... High Unreviewed
CVE-2024-23704 was published May 7, 2024
Missing Authorization vulnerability in Saul Morales Pacheco Banner System allows Exploiting... High Unreviewed
CVE-2024-54359 was published Dec 16, 2024
Missing Authorization vulnerability in Quietly Quietly Insights allows Privilege Escalation.This... High Unreviewed
CVE-2024-54378 was published Dec 16, 2024
Missing Authorization vulnerability in Blokhaus Minterpress allows Privilege Escalation.This... High Unreviewed
CVE-2024-54379 was published Dec 16, 2024
Missing Authorization vulnerability in Seerox Easy Blocks pro allows Accessing Functionality Not... High Unreviewed
CVE-2024-54256 was published Dec 13, 2024
Missing Authorization vulnerability in СleanTalk - Anti-Spam Protection Spam protection, AntiSpam... High Unreviewed
CVE-2023-33996 was published Dec 13, 2024
Missing Authorization vulnerability in Themeisle Redirection for Contact Form 7 allows Exploiting... High Unreviewed
CVE-2023-39920 was published Dec 13, 2024
Missing Authorization vulnerability in Premmerce Premmerce User Roles allows Exploiting... High Unreviewed
CVE-2023-41130 was published Dec 13, 2024
Missing Authorization vulnerability in Artbees JupiterX Core allows Exploiting Incorrectly... High Unreviewed
CVE-2023-38385 was published Dec 13, 2024
Missing Authorization vulnerability in Surfer Surfer allows Exploiting Incorrectly Configured... High Unreviewed
CVE-2023-35037 was published Dec 13, 2024
Missing Authorization vulnerability in Matthew Ruddy Easing Slider allows Exploiting Incorrectly... High Unreviewed
CVE-2023-30490 was published Dec 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database