Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,377 advisories

Loading
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected... High Unreviewed
CVE-2025-43586 was published Jun 10, 2025
Erxes Incorrect Access Control vulnerability High
CVE-2024-57190 was published for erxes (npm) Jun 10, 2025
Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose... Moderate Unreviewed
CVE-2025-32722 was published Jun 10, 2025
Improper access control in Windows Installer allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-32714 was published Jun 10, 2025
Improper access control in Microsoft Local Security Authority Server (lsasrv) allows an... High Unreviewed
CVE-2025-33056 was published Jun 10, 2025
Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a... High Unreviewed
CVE-2025-33073 was published Jun 10, 2025
Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-47962 was published Jun 10, 2025
Adobe Experience Manager versions 6.5.22 and earlier are affected by an Improper Access Control... Moderate Unreviewed
CVE-2025-46889 was published Jun 11, 2025
Dell iDRAC Tools, version(s) prior to 11.3.0.0, contain(s) an Improper Access Control... High Unreviewed
CVE-2025-27689 was published Jun 12, 2025
A vulnerability, which was classified as critical, was found in SourceCodester Simple Food... Moderate Unreviewed
CVE-2025-6161 was published Jun 17, 2025
An insecure access control vulnerability in Trend Micro Apex One and Trend Micro Worry-Free... High Unreviewed
CVE-2025-49154 was published Jun 17, 2025
The Versa Director SD-WAN orchestration platform which makes use of Cisco NCS application service... Critical Unreviewed
CVE-2024-45208 was published Jun 19, 2025
ACL configured in ip_allow.config or remap.config does not use IP addresses that are provided by... High Unreviewed
CVE-2025-31698 was published Jun 19, 2025
A vulnerability was found in FLIR AX8 up to 1.46. It has been declared as critical. This... Moderate Unreviewed
CVE-2025-6266 was published Jun 19, 2025
A vulnerability classified as critical was found in Campcodes Online Recruitment Management... Moderate Unreviewed
CVE-2025-6422 was published Jun 22, 2025
A vulnerability was found in ageerle ruoyi-ai 2.0.0 and classified as critical. Affected by this... Moderate Unreviewed
CVE-2025-6466 was published Jun 22, 2025
A settings manipulation vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute... Critical Unreviewed
CVE-2023-47297 was published Jun 23, 2025
An issue in NCR Terminal Handler v1.5.1 allows low-level privileged authenticated attackers to... High Unreviewed
CVE-2023-47294 was published Jun 23, 2025
Arc before 1.26.1 on Windows has a bypass issue in the site settings that allows websites (with... Critical Unreviewed
CVE-2024-52928 was published Jun 26, 2025
Northern.tech Mender Server before 3.7.11 and 4.x before 4.0.1 has Incorrect Access Control. Critical Unreviewed
CVE-2025-49603 was published Jun 26, 2025
Mikrotik RouterOS VXLAN Source IP Improper Access Control Vulnerability. This vulnerability... High Unreviewed
CVE-2025-6443 was published Jun 26, 2025
A vulnerability was found in code-projects Car Rental System 1.0 and classified as critical.... Moderate Unreviewed
CVE-2025-6667 was published Jun 26, 2025
D-Link DIR-823-Pro 1.02 has improper permission control, allowing unauthorized users to turn on... Moderate Unreviewed
CVE-2025-45729 was published Jun 27, 2025
There is no memory isolation between CPU cores of the MIB3 infotainment. This fact allows an... Moderate Unreviewed
CVE-2023-28907 was published Jun 28, 2025
The MIB3 infotainment unit used in Skoda and Volkswagen vehicles does not incorporate any... Moderate Unreviewed
CVE-2023-29113 was published Jun 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database