GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,715
Erlang
34
GitHub Actions
28
Go
2,301
Maven
5,000+
npm
3,946
NuGet
711
pip
3,715
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
89 advisories
Filter by severity
Thunderbird parses addresses in a way that can allow sender spoofing in case the server allows an...
High
Unreviewed
CVE-2025-3875
was published
May 14, 2025
An issue in Mytel Telecom Online Account System v1.0 allows attackers to bypass the OTP...
High
Unreviewed
CVE-2025-28128
was published
Apr 25, 2025
Francois Jacquet RosarioSIS v12.0.0 was discovered to contain a content spoofing vulnerability in...
High
Unreviewed
CVE-2025-29621
was published
Apr 22, 2025
KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by...
High
Unreviewed
CVE-2017-8422
was published
May 13, 2022
There is a whitelist mechanism bypass in GameCenter ,successful exploitation of this...
High
Unreviewed
CVE-2025-2188
was published
Apr 17, 2025
Access control vulnerability in the security verification module
Impact: Successful exploitation...
High
Unreviewed
CVE-2024-58126
was published
Apr 7, 2025
Access control vulnerability in the security verification module
Impact: Successful exploitation...
High
Unreviewed
CVE-2024-58127
was published
Apr 7, 2025
Access control vulnerability in the security verification module
Impact: Successful exploitation...
High
Unreviewed
CVE-2024-58124
was published
Apr 7, 2025
Access control vulnerability in the security verification module
Impact: Successful exploitation...
High
Unreviewed
CVE-2025-31170
was published
Apr 7, 2025
Access control vulnerability in the security verification module
Impact: Successful exploitation...
High
Unreviewed
CVE-2024-58125
was published
Apr 7, 2025
A crafted URL containing specific Unicode characters could have hidden the true origin of the...
High
Unreviewed
CVE-2025-3029
was published
Apr 1, 2025
An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur....
High
Unreviewed
CVE-2025-30142
was published
Mar 18, 2025
Certain crafted MIME email messages that claimed to contain an encrypted OpenPGP message, which...
High
Unreviewed
CVE-2025-26696
was published
Mar 10, 2025
Microsoft Exchange Server Spoofing Vulnerability
High
Unreviewed
CVE-2021-31209
was published
May 24, 2022
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-26418, CVE-2021...
High
Unreviewed
CVE-2021-31172
was published
May 24, 2022
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-26418, CVE-2021...
High
Unreviewed
CVE-2021-28478
was published
May 24, 2022
Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-28478, CVE-2021...
High
Unreviewed
CVE-2021-26418
was published
May 24, 2022
Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021...
High
Unreviewed
CVE-2021-31195
was published
May 24, 2022
Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability
High
Unreviewed
CVE-2023-24892
was published
Mar 14, 2023
AMI SPx contains a vulnerability in BMC where a User may cause an authentication bypass by...
High
Unreviewed
CVE-2023-34329
was published
Jul 18, 2023
A missing delay in popup notifications could have made it possible for an attacker to trick a...
High
Unreviewed
CVE-2023-32207
was published
Jun 2, 2023
In JetBrains YouTrack before 2024.3.55417 account takeover was possible via spoofed email and...
High
Unreviewed
CVE-2025-24458
was published
Jan 21, 2025
ProTip!
Advisories are also available from the
GraphQL API