Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,789
Erlang
36
GitHub Actions
29
Go
2,370
Maven
5,000+
npm
3,994
NuGet
720
pip
3,781
Pub
12
RubyGems
927
Rust
982
Swift
38
Unreviewed advisories
All unreviewed
5,000+

986 advisories

Loading
Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component:... High Unreviewed
CVE-2024-21268 was published Oct 15, 2024
Vulnerability in the Oracle Common Applications Calendar product of Oracle E-Business Suite ... High Unreviewed
CVE-2024-21270 was published Oct 15, 2024
Vulnerability in the Oracle Incentive Compensation product of Oracle E-Business Suite (component:... High Unreviewed
CVE-2024-21269 was published Oct 15, 2024
Vulnerability in the Oracle MES for Process Manufacturing product of Oracle E-Business Suite ... High Unreviewed
CVE-2024-21277 was published Oct 15, 2024
Vulnerability in the Oracle Field Service product of Oracle E-Business Suite (component: Field... High Unreviewed
CVE-2024-21271 was published Oct 15, 2024
Vulnerability in the Oracle Quoting product of Oracle E-Business Suite (component: User Interface... High Unreviewed
CVE-2024-21275 was published Oct 15, 2024
Vulnerability in the Oracle Sourcing product of Oracle E-Business Suite (component: Auctions). ... High Unreviewed
CVE-2024-21279 was published Oct 15, 2024
Vulnerability in the Oracle Work in Process product of Oracle E-Business Suite (component:... High Unreviewed
CVE-2024-21276 was published Oct 15, 2024
Vulnerability in the Oracle Contract Lifecycle Management for Public Sector product of Oracle E... High Unreviewed
CVE-2024-21278 was published Oct 15, 2024
Vulnerability in the Oracle Service Contracts product of Oracle E-Business Suite (component:... High Unreviewed
CVE-2024-21280 was published Oct 15, 2024
Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Core product of Oracle PeopleSoft ... High Unreviewed
CVE-2024-21283 was published Oct 15, 2024
Vulnerability in the Oracle Financials product of Oracle E-Business Suite (component: Common... High Unreviewed
CVE-2024-21282 was published Oct 15, 2024
Vulnerability in the Oracle Banking Liquidity Management product of Oracle Financial Services... High Unreviewed
CVE-2024-21284 was published Oct 15, 2024
Vulnerability in the Oracle Banking Liquidity Management product of Oracle Financial Services... High Unreviewed
CVE-2024-21285 was published Oct 15, 2024
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2024-21259 was published Oct 15, 2024
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)... High Unreviewed
CVE-2024-21260 was published Oct 15, 2024
Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Site... High Unreviewed
CVE-2024-21265 was published Oct 15, 2024
Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost... High Unreviewed
CVE-2024-21267 was published Oct 15, 2024
An issue in Hideez com.hideez 2.7.8.3 allows a remote attacker to obtain sensitive information... High Unreviewed
CVE-2024-48792 was published Oct 14, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.6 prior to 17.2.9... High Unreviewed
CVE-2024-8970 was published Oct 11, 2024
Magento Open Source Improper Authorization vulnerability High
CVE-2024-45132 was published for magento/community-edition (Composer) Oct 10, 2024
Parse Server's custom object ID allows to acquire role privileges High
CVE-2024-47183 was published for parse-server (npm) Oct 4, 2024
mstniy mtrezza
Pomerium service account access token may grant unintended access to databroker API High
CVE-2024-47616 was published for github.com/pomerium/pomerium (Go) Oct 2, 2024
RevoWorks Cloud Client 3.0.91 and earlier contains an incorrect authorization vulnerability. If... High Unreviewed
CVE-2024-47560 was published Oct 1, 2024
Incorrect Authorization vulnerability in National Keep Cyber Security Services CyberMath allows... High Unreviewed
CVE-2024-7108 was published Sep 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database