GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
3,388 advisories
Filter by severity
Improper Access Control vulnerability in Drupal Open Social allows Collect Data from Common...
High
Unreviewed
CVE-2024-13240
was published
Jan 9, 2025
Improper access control in Azure SaaS Resources allows an authorized attacker to disclose...
High
Unreviewed
CVE-2025-21380
was published
Jan 10, 2025
A vulnerability was found in StarSea99 starsea-mall 1.0. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2025-0399
was published
Jan 13, 2025
A vulnerability classified as critical was found in 1902756969 reggie 1.0. Affected by this...
Moderate
Unreviewed
CVE-2025-0402
was published
Jan 13, 2025
An Improper Access Control vulnerability [CWE-284] in FortiDeceptor version 6.0.0, version 5.3.3...
Moderate
Unreviewed
CVE-2024-45326
was published
Jan 14, 2025
A vulnerability, which was classified as critical, was found in Blog Botz for Journal Theme 1.0...
Moderate
Unreviewed
CVE-2025-0460
was published
Jan 14, 2025
A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0....
Moderate
Unreviewed
CVE-2025-0463
was published
Jan 14, 2025
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2025-21202
was published
Jan 14, 2025
Secure Boot Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2025-21213
was published
Jan 14, 2025
Active Directory Domain Services Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21293
was published
Jan 14, 2025
Windows Geolocation Service Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2025-21301
was published
Jan 14, 2025
Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability
Moderate
Unreviewed
CVE-2025-21340
was published
Jan 14, 2025
Visual Studio Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21405
was published
Jan 14, 2025
The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized modification of data due...
Moderate
Unreviewed
CVE-2024-12370
was published
Jan 17, 2025
WeGIA < 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application...
Critical
Unreviewed
CVE-2024-57032
was published
Jan 17, 2025
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2025-21185
was published
Jan 17, 2025
A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0...
Moderate
Unreviewed
CVE-2025-0582
was published
Jan 20, 2025
https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incorrect Access Control. The...
High
Unreviewed
CVE-2024-57360
was published
Jan 21, 2025
With the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker...
High
Unreviewed
CVE-2025-23083
was published
Jan 22, 2025
With the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker...
High
Unreviewed
CVE-2025-23090
was published
Jan 22, 2025
The Tutor LMS plugin for WordPress is vulnerable to bypass to user registration in versions up to...
Moderate
Unreviewed
CVE-2024-10393
was published
Jan 23, 2025
A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass...
High
Unreviewed
CVE-2025-0650
was published
Jan 23, 2025
IBM i 7.2, 7.3, 7.4, and 7.5 is vulnerable to a file level local denial of service caused by an...
Low
Unreviewed
CVE-2024-35122
was published
Jan 24, 2025
A vulnerability classified as critical was found in JoeyBling bootplus up to...
Moderate
Unreviewed
CVE-2025-0702
was published
Jan 24, 2025
ProTip!
Advisories are also available from the
GraphQL API