GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,683
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
2,144 advisories
Filter by severity
A vulnerability in the implementation of SAML 2.0 single sign-on (SSO) for remote access VPN...
Moderate
Unreviewed
CVE-2024-20355
was published
May 22, 2024
In lunary-ai/lunary version 1.2.2, the DELETE endpoint located at `packages/backend/src/api/v1...
Critical
Unreviewed
CVE-2024-3761
was published
May 20, 2024
Missing Authorization vulnerability in Flothemes Flo Forms.This issue affects Flo Forms: from n/a...
Moderate
Unreviewed
CVE-2024-35174
was published
May 17, 2024
Missing Authorization vulnerability in PluginEver Serial Numbers for WooCommerce – License...
Moderate
Unreviewed
CVE-2024-35173
was published
May 17, 2024
Missing Authorization vulnerability in QuanticaLabs Chauffeur Taxi Booking System for WordPress...
High
Unreviewed
CVE-2024-32692
was published
May 17, 2024
Missing Authorization vulnerability in WordPlus BP Better Messages allows Accessing Functionality...
Moderate
Unreviewed
CVE-2024-32802
was published
May 17, 2024
Missing Authorization vulnerability in Andy Moyle Church Admin church-admin allows Exploiting...
Moderate
Unreviewed
CVE-2024-31281
was published
May 17, 2024
Missing Authorization vulnerability in Sparkle WP Editorialmag editorialmag.This issue affects...
Moderate
Unreviewed
CVE-2023-32129
was published
May 17, 2024
Missing Authorization vulnerability in Metagauss EventPrime allows Exploiting Incorrectly...
Moderate
Unreviewed
CVE-2023-33321
was published
May 17, 2024
Missing Authorization vulnerability in Imran Sayed Headless CMS.This issue affects Headless CMS:...
Moderate
Unreviewed
CVE-2023-34186
was published
May 17, 2024
Missing Authorization vulnerability in Joseph C Dolson My Tickets.This issue affects My Tickets:...
High
Unreviewed
CVE-2023-23988
was published
May 17, 2024
Missing Authorization vulnerability in FmeAddons Conditional Checkout Fields for WooCommerce.This...
Moderate
Unreviewed
CVE-2022-45070
was published
May 17, 2024
Manage Bank Statement ReProcessing Rules does not perform necessary authorization checks for an...
Moderate
Unreviewed
CVE-2024-4139
was published
May 14, 2024
Manage Bank Statement ReProcessing Rules does not perform necessary authorization checks for an...
Moderate
Unreviewed
CVE-2024-4138
was published
May 14, 2024
SAP My Travel Requests does not perform necessary authorization checks for an authenticated user...
Moderate
Unreviewed
CVE-2024-32731
was published
May 14, 2024
SAP Bank Account Management does not perform necessary authorization check for an authorized user...
Low
Unreviewed
CVE-2024-33000
was published
May 14, 2024
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected...
Critical
Unreviewed
CVE-2024-27939
was published
May 14, 2024
Missing authorization in PostgreSQL built-in views pg_stats_ext and pg_stats_ext_exprs allows an...
Low
Unreviewed
CVE-2024-4317
was published
May 14, 2024
Missing Authorization vulnerability in ThemeLocation Custom WooCommerce Checkout Fields Editor...
Moderate
Unreviewed
CVE-2024-33956
was published
May 14, 2024
Missing Authorization vulnerability in codename065 Sliding Widgets allows Cross-Site Scripting ...
Moderate
Unreviewed
CVE-2024-33938
was published
May 14, 2024
Missing Authorization vulnerability in Eric Alli Google Typography.This issue affects Google...
Moderate
Unreviewed
CVE-2024-33942
was published
May 14, 2024
Missing Authorization vulnerability in Podlove Podlove Podcast Publisher.This issue affects...
High
Unreviewed
CVE-2024-32712
was published
May 14, 2024
Missing Authorization vulnerability in WPDeveloper SchedulePress.This issue affects SchedulePress...
Moderate
Unreviewed
CVE-2024-32717
was published
May 14, 2024
SAP Enable Now Manager does not perform necessary authorization checks for an authenticated user,...
Moderate
Unreviewed
CVE-2024-32730
was published
May 14, 2024
Missing Authorization vulnerability in Woo product importer Sharkdropship dropshipping for...
High
Unreviewed
CVE-2024-32724
was published
May 14, 2024
ProTip!
Advisories are also available from the
GraphQL API