Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

104,538 advisories

Loading
An Incorrect Access Control vulnerability was found in /music/ajax.php?action=delete_genre in... Moderate Unreviewed
CVE-2024-42796 was published Sep 16, 2024
Kashipara Music Management System v1.0 is vulnerable to Incorrect Access Control via /music/ajax... Moderate Unreviewed
CVE-2024-42794 was published Sep 16, 2024
Improper access control in Intel(R) RAID Web Console all versions may allow an authenticated user... Moderate Unreviewed
CVE-2024-36247 was published Sep 16, 2024
Improper input validation in some Intel(R) RAID Web Console software all versions may allow an... Moderate Unreviewed
CVE-2024-34545 was published Sep 16, 2024
Uncontrolled search path element in Intel(R) RAID Web Console software for all versions may allow... Moderate Unreviewed
CVE-2024-34153 was published Sep 16, 2024
Uncaught exception in Intel(R) RAID Web Console software all versions may allow an authenticated... Moderate Unreviewed
CVE-2024-33848 was published Sep 16, 2024
Improper access control in Intel(R) RAID Web Console software for all versions may allow an... Moderate Unreviewed
CVE-2024-34543 was published Sep 16, 2024
Improper conditions check in some Intel(R) Processors with Intel(R) SGX may allow a privileged... Moderate Unreviewed
CVE-2023-43753 was published Sep 16, 2024
Out-of-bounds write in UEFI firmware for some Intel(R) Processors may allow a privileged user to... Moderate Unreviewed
CVE-2023-22351 was published Sep 16, 2024
NULL pointer dereference in the UEFI firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed
CVE-2023-23904 was published Sep 16, 2024
Improper finite state machines (FSMs) in hardware logic in some Intel(R) Processors may allow an... Moderate Unreviewed
CVE-2024-24968 was published Sep 16, 2024
Observable discrepancy in RAPL interface for some Intel(R) Processors may allow a privileged user... Moderate Unreviewed
CVE-2024-23984 was published Sep 16, 2024
NULL pointer dereference in Intel(R) RAID Web Console software for all versions may allow an... Moderate Unreviewed
CVE-2024-32666 was published Sep 16, 2024
Improper access control in Intel(R) RAID Web Console software for all versions may allow an... Moderate Unreviewed
CVE-2024-32940 was published Sep 16, 2024
IBM Aspera Shares 1.0 through 1.10.0 PL3 does not invalidate session after a password reset which... Moderate Unreviewed
CVE-2024-38315 was published Sep 16, 2024
The MiCard PLUS Ci and MiCard PLUS BLE reader products developed by rf IDEAS and rebranded by NT... Moderate Unreviewed
CVE-2024-1578 was published Sep 16, 2024
OMFLOW from The SYSCOM Group does not properly restrict the query range of its data query... Moderate Unreviewed
CVE-2024-8780 was published Sep 16, 2024
SmartRobot from INTUMIT does not properly validate a specific page parameter, allowing... Moderate Unreviewed
CVE-2024-8776 was published Sep 16, 2024
Mattermost Mobile Apps versions <=2.18.0 fail to disable autocomplete during login while typing... Moderate Unreviewed
CVE-2024-45833 was published Sep 16, 2024
A vulnerability classified as critical was found in vedees wcms up to 0.3.2. Affected by this... Moderate Unreviewed
CVE-2024-8875 was published Sep 16, 2024
OMFLOW from The SYSCOM Group does not properly validate user input of the download functionality,... Moderate Unreviewed
CVE-2024-8778 was published Sep 16, 2024
A vulnerability classified as critical has been found in playSMS 1.4.4/1.4.5/1.4.6/1.4.7.... Moderate Unreviewed
CVE-2024-8880 was published Sep 16, 2024
A vulnerability, which was classified as problematic, has been found in xiaohe4966 TpMeCMS up to... Moderate Unreviewed
CVE-2024-8876 was published Sep 16, 2024
A vulnerability was found in code-projects Crud Operation System 1.0. It has been rated as... Moderate Unreviewed
CVE-2024-8868 was published Sep 16, 2024
A vulnerability was found in Perfex CRM 3.1.6. It has been declared as problematic. This... Moderate Unreviewed
CVE-2024-8867 was published Sep 16, 2024
ProTip! Advisories are also available from the GraphQL API