GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,036
Composer 4,791
Erlang 36
GitHub Actions 29
Go 2,370
Maven 5,681
npm 3,995
NuGet 720
pip 3,789
Pub 12
RubyGems 927
Rust 984
Swift 38

Unreviewed advisories

All unreviewed 261,626

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,199 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In Splunk Enterprise versions below 9.4.2, 9.3.5, 9.2.6, and 9.1.9 and Splunk Cloud Platform... Moderate Unreviewed

CVE-2025-20300 was published Jul 7, 2025

The Tenda AC1200 V-W15Ev2 V15.11.0.10(1576) router is vulnerable to improper authorization /... Moderate Unreviewed

CVE-2022-40843 was published Nov 15, 2022

Incorrect Authorization vulnerability in The Wikimedia Foundation Mediawiki - OAuth Extension... Critical Unreviewed

CVE-2025-32068 was published Apr 11, 2025

The agent in Quest KACE Systems Management Appliance (SMA) before 14.0.97 and 14.1.x before 14.1... Critical Unreviewed

CVE-2025-26850 was published Jul 5, 2025

Incorrect Authorization vulnerability in OpenText™ GroupWise allows Exploiting Incorrectly... Low Unreviewed

CVE-2025-0885 was published Jul 3, 2025

A vulnerability was found in mod_proxy_cluster. The issue is that the <Directory> directive... Moderate Unreviewed

CVE-2024-10306 was published Apr 23, 2025

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the... Low Unreviewed

CVE-2025-32462 was published Jun 30, 2025

Yealink YMCS before 2025-05-26 does not prevent OpenAPI access by frozen enterprise accounts,... Moderate Unreviewed

CVE-2025-52918 was published Jun 22, 2025

This vulnerability allows network-adjacent attackers to create arbitrary files on affected... High Unreviewed

CVE-2024-23929 was published Jan 31, 2025

This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded... High Unreviewed

CVE-2024-23928 was published Jan 31, 2025

The Debian zuluPolkit/CMakeLists.txt file for zuluCrypt through the zulucrypt_6.2.0-1 package has... Critical Unreviewed

CVE-2025-53391 was published Jun 29, 2025

StreamLabs Desktop Application 1.9.0 is vulnerable to Incorrect Access Control via obs64.exe. An... High Unreviewed

CVE-2022-36263 was published Aug 20, 2022

Autel MaxiCharger AC Wallbox Commercial Technician API Incorrect Authorization Privilege... High Unreviewed

CVE-2025-5822 was published Jun 26, 2025

Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected... Moderate Unreviewed

CVE-2025-49550 was published Jun 26, 2025

Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected... Low Unreviewed

CVE-2025-49549 was published Jun 26, 2025

Successful exploitation of the vulnerability could allow an unauthenticated, remote attacker to... High Unreviewed

CVE-2025-48466 was published Jun 26, 2025

Under certain conditions, an authenticated user request may execute with stale privileges... Moderate Unreviewed

CVE-2025-6707 was published Jun 26, 2025

An incorrect authorization vulnerability exists in multiple WSO2 products that allows... Moderate Unreviewed

CVE-2024-3511 was published Jun 23, 2025

A logic issue was addressed with improved checks This issue is fixed in macOS Sonoma 14. A camera... Moderate Unreviewed

CVE-2023-41994 was published Jan 11, 2024

The AI Engine plugin for WordPress is vulnerable to unauthorized modification of data and loss of... High Unreviewed

CVE-2025-5071 was published Jun 19, 2025

The Poll, Survey & Quiz Maker Plugin by Opinion Stage plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-3880 was published Jun 17, 2025

Vulnerability in Oracle Java SE (component: CORBA). Supported versions that are affected are... Moderate Unreviewed

CVE-2023-22067 was published Oct 18, 2023

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6.1. An app... Moderate Unreviewed

CVE-2023-41077 was published Oct 25, 2023

The WordPress Single Sign-On (SSO) plugin for WordPress is vulnerable to unauthorized access due... Moderate Unreviewed

CVE-2025-6003 was published Jun 12, 2025

An insufficient database Row-Level Security policy in Lovable through 2025-04-15 allows remote... Critical Unreviewed

CVE-2025-48757 was published May 30, 2025

Previous 1 2 3 4 5 … 87 88 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,199 advisories