GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,941
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,049
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
1,887 advisories
Filter by severity
An improper access control vulnerability exists in the lunary-ai/lunary repository, specifically...
High
Unreviewed
CVE-2024-5126
was published
Jun 6, 2024
In gaizhenbiao/chuanhuchatgpt, specifically the version tagged as 20240121, there exists a...
Moderate
Unreviewed
CVE-2024-3404
was published
Jun 6, 2024
An Insecure Direct Object Reference (IDOR) vulnerability was identified in lunary-ai/lunary,...
Critical
Unreviewed
CVE-2024-5128
was published
Jun 6, 2024
An Improper Access Control vulnerability exists in the lunary-ai/lunary repository, affecting...
High
Unreviewed
CVE-2024-5131
was published
Jun 6, 2024
In lunary-ai/lunary version 1.2.5, an improper access control vulnerability exists due to a...
Moderate
Unreviewed
CVE-2024-5248
was published
Jun 6, 2024
In lunary-ai/lunary versions 1.2.2 through 1.2.25, an improper access control vulnerability...
Moderate
Unreviewed
CVE-2024-5127
was published
Jun 6, 2024
An improper access control vulnerability exists in lunary-ai/lunary versions up to and including...
High
Unreviewed
CVE-2024-3504
was published
Jun 6, 2024
An improper access control vulnerability exists in the gaizhenbiao/chuanhuchatgpt application,...
High
Unreviewed
CVE-2024-4520
was published
Jun 4, 2024
Improper Access Control vulnerability in EMTA Grup PDKS allows Exploiting Incorrectly Configured...
Unknown
Unreviewed
CVE-2024-0336
was published
Jun 3, 2024
Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU registers.
High
Unreviewed
CVE-2024-23360
was published
Jun 3, 2024
In telephony, there is a possible information disclosure due to a missing permission check. This...
Unknown
Unreviewed
CVE-2024-20065
was published
Jun 3, 2024
Improper access control vulnerability in Prodys' Quantum Audio codec affecting versions 2.3.4t...
Critical
Unreviewed
CVE-2024-5168
was published
May 23, 2024
iFrames Bypass Origin Checks for Tauri API Access Control
Moderate
CVE-2024-35222
was published
for
tauri
(Rust)
May 23, 2024
A vulnerability in the file policy feature that is used to inspect encrypted archive files of...
Moderate
Unreviewed
CVE-2024-20261
was published
May 22, 2024
vantage6 collaboration admins can extend their influence by expanding the collaboration
Low
CVE-2024-32969
was published
for
vantage6
(pip)
May 22, 2024
An Improper Access Control vulnerability exists in lunary-ai/lunary version 1.2.2, where users...
High
Unreviewed
CVE-2024-4151
was published
May 20, 2024
Improper access control in some Intel(R) Ethernet Controller Administrative Tools software before...
Moderate
Unreviewed
CVE-2024-21828
was published
May 16, 2024
Improper access control for some Intel(R) Wireless Bluetooth products for Windows before version...
Moderate
Unreviewed
CVE-2023-47859
was published
May 16, 2024
Improper access control in some Intel(R) GPA Framework software installers before version 2023.3...
High
Unreviewed
CVE-2023-43748
was published
May 16, 2024
Improper access control in Intel(R) Power Gadget software for Windows all versions may allow an...
High
Unreviewed
CVE-2023-45217
was published
May 16, 2024
Improper access control in some Intel(R) CST before version 2.1.10300 may allow an authenticated...
Moderate
Unreviewed
CVE-2023-43487
was published
May 16, 2024
Improper access control in some Intel(R) Power Gadget software for macOS all versions may allow...
High
Unreviewed
CVE-2023-40070
was published
May 16, 2024
Improper access control for some Intel(R) CST software before version 2.1.10300 may allow an...
Moderate
Unreviewed
CVE-2023-39433
was published
May 16, 2024
Improper access control in some Intel(R) GPA software installers before version 2023.3 may allow...
High
Unreviewed
CVE-2023-40071
was published
May 16, 2024
Improper access control for some Intel(R) Thunderbolt driver software before version 89 may allow...
High
Unreviewed
CVE-2022-37410
was published
May 16, 2024
ProTip!
Advisories are also available from the
GraphQL API