GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
12 advisories
Filter by severity
Privilege Context Switching Error in Elasticsearch
Low
CVE-2020-7020
was published
for
org.elasticsearch:elasticsearch
(Maven)
Mar 18, 2021
Incorrect Comparison, Permissive List of Allowed Inputs, and Privilege Context Switching Error in PostgreSQL
Critical
Unreviewed
CVE-2020-25696
was published
Feb 15, 2022
Privilege Context Switching Error in wildlfy
Moderate
CVE-2020-1719
was published
for
org.wildfly.bom:wildfly
(Maven)
Jun 8, 2021
xwiki-platform vulnerable to Remote Code Execution in Annotations
Critical
CVE-2023-26475
was published
for
org.xwiki.platform:xwiki-platform-annotation-ui
(Maven)
Mar 2, 2023
The overlayfs implementation in the linux kernel did not properly validate with respect to user...
High
Unreviewed
CVE-2021-3493
was published
May 24, 2022
XWiki Rendering's footnote macro vulnerable to privilege escalation via the footnote macro
High
CVE-2023-37912
was published
for
org.xwiki.platform:xwiki-core-rendering-macro-footnotes
(Maven)
Oct 25, 2023
Aimeos denial of service vulnerability in SaaS and marketplace setups
Moderate
CVE-2024-37294
was published
for
aimeos/aimeos-core
(Composer)
May 29, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 prior to...
Moderate
Unreviewed
CVE-2024-8641
was published
Sep 12, 2024
ai-admin-graphql has a Denial of service vulnerability in SaaS and marketplace setups
Moderate
CVE-2024-47173
was published
for
aimeos/ai-admin-graphql
(Composer)
Oct 24, 2024
HTTP Client uses incorrect token after refresh
Moderate
CVE-2024-51987
was published
for
Duende.AccessTokenManagement.OpenIdConnect
(NuGet)
Nov 7, 2024
A privilege context switching error vulnerability [CWE-270] in FortiClient Windows version 7.2.4...
High
Unreviewed
CVE-2024-36513
was published
Nov 12, 2024
Apache Airflow vulnerable to Privilege Context Switching Error
Critical
CVE-2023-25754
was published
for
apache-airflow
(pip)
May 8, 2023
ProTip!
Advisories are also available from the
GraphQL API