Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,384 advisories

Loading
Mercedes-Benz head-unit NTG6 has Ethernet pins on Base Board to connect module CSB. Attacker can... Moderate Unreviewed
CVE-2023-34404 was published Feb 14, 2025
A vulnerability was found in needyamin Library Card System 1.0. It has been declared as critical.... Moderate Unreviewed
CVE-2025-1355 was published Feb 16, 2025
Duplicate Advisory: Keycloak allows Incorrect Assignment of an Organization to a User Moderate
GHSA-rq4w-cjrr-h8w8 was published for org.keycloak:keycloak-services (Maven) Feb 17, 2025 withdrawn
The PAM module pam_cap.so of libcap configuration supports group names starting with “@”, during... Moderate Unreviewed
CVE-2025-1390 was published Feb 18, 2025
Sage DPW before 2024_12_001 is vulnerable to Incorrect Access Control. The implemented role-based... High Unreviewed
CVE-2024-56883 was published Feb 18, 2025
Incorrect Access Control vulnerability in Atos Eviden IDRA before 2.6.1 could allow the... Critical Unreviewed
CVE-2024-39327 was published Feb 18, 2025
The Education Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed
CVE-2024-13854 was published Feb 19, 2025
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed
CVE-2025-0968 was published Feb 19, 2025
A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an... Moderate Unreviewed
CVE-2025-20153 was published Feb 19, 2025
Lexmark MX6500 LW75.JD.P296 and previous devices have Incorrect Access Control via the access... Critical Unreviewed
CVE-2020-35546 was published Feb 19, 2025
An improper access control vulnerability in Power Pages allows an unauthorized attacker to... High Unreviewed
CVE-2025-24989 was published Feb 20, 2025
The Prime Addons for Elementor plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed
CVE-2024-13855 was published Feb 20, 2025
Dell RecoverPoint for Virtual Machines 6.0.X contains a command execution vulnerability. A Low... Moderate Unreviewed
CVE-2025-21105 was published Feb 20, 2025
Improper access control in some Intel(R) Optane(TM) PMem 100 Series Management Software before... High Unreviewed
CVE-2023-22311 was published Feb 20, 2025
Improper access control in some Intel(R) Optane(TM) PMem software before versions 01.00.00.3547,... High Unreviewed
CVE-2023-27517 was published Feb 20, 2025
DDSN Interactive cm3 Acora CMS version 10.1.1 contains an improper access control vulnerability.... Moderate Unreviewed
CVE-2025-25968 was published Feb 20, 2025
A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1.... Moderate Unreviewed
CVE-2025-1555 was published Feb 21, 2025
A vulnerability classified as critical has been found in SourceCodester Best Employee Management... Moderate Unreviewed
CVE-2025-1593 was published Feb 23, 2025
A vulnerability was found in SourceCodester E-Learning System 1.0. It has been classified as... Moderate Unreviewed
CVE-2025-1590 was published Feb 23, 2025
A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been... Moderate Unreviewed
CVE-2025-1598 was published Feb 24, 2025
Incorrect access control in the component /iclock/Settings?restartNCS=1 of NovaCHRON Zeitsysteme... Moderate Unreviewed
CVE-2024-53542 was published Feb 25, 2025
A vulnerability, which was classified as critical, has been found in Lumsoft ERP 8. Affected by... Moderate Unreviewed
CVE-2025-1646 was published Feb 25, 2025
The Enfold theme for WordPress is vulnerable to unauthorized access of data due to a missing... Moderate Unreviewed
CVE-2024-13693 was published Feb 25, 2025
Improper access control in the auth_oauth module of Odoo Community 15.0 and Odoo Enterprise 15.0... High Unreviewed
CVE-2024-12368 was published Feb 25, 2025
Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows... High Unreviewed
CVE-2024-36259 was published Feb 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database