Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,778
Erlang
36
GitHub Actions
29
Go
2,336
Maven
5,000+
npm
3,969
NuGet
713
pip
3,767
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,096 advisories

Loading
An insecure access control vulnerability in Trend Micro Apex One and Trend Micro Worry-Free... High Unreviewed
CVE-2025-49154 was published Jun 17, 2025
A vulnerability, which was classified as critical, was found in SourceCodester Simple Food... Moderate Unreviewed
CVE-2025-6161 was published Jun 17, 2025
Dell iDRAC Tools, version(s) prior to 11.3.0.0, contain(s) an Improper Access Control... High Unreviewed
CVE-2025-27689 was published Jun 12, 2025
Adobe Experience Manager versions 6.5.22 and earlier are affected by an Improper Access Control... Moderate Unreviewed
CVE-2025-46889 was published Jun 11, 2025
Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-47962 was published Jun 10, 2025
Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a... High Unreviewed
CVE-2025-33073 was published Jun 10, 2025
Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose... Moderate Unreviewed
CVE-2025-32722 was published Jun 10, 2025
Improper access control in Microsoft Local Security Authority Server (lsasrv) allows an... High Unreviewed
CVE-2025-33056 was published Jun 10, 2025
Improper access control in Windows Installer allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-32714 was published Jun 10, 2025
Erxes Incorrect Access Control vulnerability High
CVE-2024-57190 was published for erxes (npm) Jun 10, 2025
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected... High Unreviewed
CVE-2025-43586 was published Jun 10, 2025
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected... Moderate Unreviewed
CVE-2025-27206 was published Jun 10, 2025
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected... Moderate Unreviewed
CVE-2025-27207 was published Jun 10, 2025
A vulnerability was found in eCharge Hardy Barth Salia PLCC 2.2.0. It has been declared as... Moderate Unreviewed
CVE-2025-5873 was published Jun 9, 2025
A vulnerability, which was classified as critical, was found in SourceCodester Client Database... Moderate Unreviewed
CVE-2025-5840 was published Jun 7, 2025
A vulnerability classified as critical was found in SourceCodester Open Source Clinic Management... Moderate Unreviewed
CVE-2025-5728 was published Jun 6, 2025
Improper access control in users MFA feature in Devolutions Server 2025.1.7.0 and earlier allows... Moderate Unreviewed
CVE-2025-5382 was published Jun 5, 2025
Improper access control in permissions component in Devolutions Server 2025.1.10.0 and earlier... Moderate Unreviewed
CVE-2025-0691 was published Jun 5, 2025
Improper access control in Tor network blocking feature in Devolutions Server 2025.1.10.0 and... Moderate Unreviewed
CVE-2025-3768 was published Jun 5, 2025
A vulnerability in the API of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity... Moderate Unreviewed
CVE-2025-20130 was published Jun 4, 2025
Memory corruption may occur while attaching VM when the HLOS retains access to VM. High Unreviewed
CVE-2024-53010 was published Jun 3, 2025
A vulnerability, which was classified as critical, was found in chaitak-gorai Blogbook up to... Moderate Unreviewed
CVE-2025-5406 was published Jun 1, 2025
Improper access control in user group management in Devolutions Server 2025.1.7.0 and earlier... High Unreviewed
CVE-2025-4433 was published May 30, 2025
The Featured Image Plus – Quick & Bulk Edit with Unsplash plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-4431 was published May 30, 2025
Tinxy WiFi Lock Controller v1 RF was discovered to be configured to transmit on an open Wi-Fi... Critical Unreviewed
CVE-2025-44619 was published May 30, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database