Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,567 advisories

Loading
The WordPress Helpdesk Integration plugin for WordPress is vulnerable to Local File Inclusion in... High Unreviewed
CVE-2025-9990 was published Sep 5, 2025
Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability High Unreviewed
CVE-2025-55238 was published Sep 5, 2025
In setupAccessibilityServices of AccessibilityFragment.java, there is a possible way to hide an... High Unreviewed
CVE-2025-26431 was published Sep 4, 2025
In getComponentName of AccessibilitySettingsUtils.java, there is a possible way to for a... High Unreviewed
CVE-2025-26439 was published Sep 4, 2025
In onCreate of MediaProjectionPermissionActivity.java , there is a possible way to grant a... High Unreviewed
CVE-2025-32322 was published Sep 4, 2025
In FrpBypassAlertActivity of FrpBypassAlertActivity.java, there is a possible way to bypass FRP... High Unreviewed
CVE-2025-22414 was published Sep 4, 2025
In maybeShowDialog of ControlsSettingsDialogManager.kt, there is a possible overlay of the... High Unreviewed
CVE-2025-32350 was published Sep 4, 2025
In onStart of BiometricEnrollIntroduction.java, there is a possible way to determine the device's... High Unreviewed
CVE-2025-32347 was published Sep 4, 2025
In setDisplayName of AssociationRequest.java, there is a possible way for an app to retain CDM... High Unreviewed
CVE-2025-48522 was published Sep 4, 2025
In onCreate of SelectAccountActivity.java, there is a possible way to add contacts without... High Unreviewed
CVE-2025-48523 was published Sep 4, 2025
In getCallingPackageName of CredentialStorage, there is a possible permission bypass due to a... High Unreviewed
CVE-2025-48531 was published Sep 4, 2025
In multiple locations, there is a possible one-time permission bypass due to a logic error in the... High Unreviewed
CVE-2025-48547 was published Sep 4, 2025
In multiple locations, there is a possible way to use apps linked from a context menu of a... High Unreviewed
CVE-2025-48533 was published Sep 4, 2025
In markMediaAsFavorite of MediaProvider.java, there is a possible way to bypass the... High Unreviewed
CVE-2025-48532 was published Sep 4, 2025
In multiple functions of AppOpsControllerImpl.java, there is a possible way to record audio... High Unreviewed
CVE-2025-48548 was published Sep 4, 2025
In multiple functions of BatteryService.java, there is a possible way to hijack implicit intent... High Unreviewed
CVE-2025-48558 was published Sep 4, 2025
In multiple locations, there is a possible privilege escalation due to a tapjacking/overlay... High Unreviewed
CVE-2025-32349 was published Sep 4, 2025
In onNullBinding of RemoteFillService.java, there is a possible background activity launch due to... High Unreviewed
CVE-2025-48563 was published Sep 4, 2025
In handlePackagesChanged of DevicePolicyManagerService.java, there is a possible DoS of a device... High Unreviewed
CVE-2025-48553 was published Sep 4, 2025
In multiple locations, there is a possible condition that results in OOB accesses due to an... High Unreviewed
CVE-2025-48530 was published Sep 4, 2025
In getDefaultCBRPackageName of CellBroadcastHandler.java, there is a possible escalation of... High Unreviewed
CVE-2025-48534 was published Sep 4, 2025
In assertSafeToStartCustomActivity of AppRestrictionsFragment.java , there is a possible way to... High Unreviewed
CVE-2025-48535 was published Sep 4, 2025
In multiple locations, there is a possible way to persistently DoS the device due to improper... High Unreviewed
CVE-2025-48537 was published Sep 4, 2025
In SendPacketToPeer of acl_arbiter.cc, there is a possible out of bounds read due to a use after... High Unreviewed
CVE-2025-48539 was published Sep 4, 2025
In processTransactInternal of RpcState.cpp, there is a possible local out of memory write due to... High Unreviewed
CVE-2025-48540 was published Sep 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database