Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,572 advisories

Loading
The mobile application (com.transsnet.store) has a man-in-the-middle attack vulnerability, which... High Unreviewed
CVE-2025-2190 was published Mar 11, 2025
Logical vulnerability in the mobile application (com.transsion.carlcare) may lead to user... High Unreviewed
CVE-2024-7697 was published Aug 12, 2024
An authenticated attacker can trigger a stack based buffer overflow in the DHIP Service (TCP port... High Unreviewed
CVE-2024-52547 was published Dec 3, 2024
Unauthorized access vulnerability in the mobile application (com.transsion.phoenix) can lead to... High Unreviewed
CVE-2024-11206 was published Nov 14, 2024
Velocidex WinPmem versions below 4.1 suffer from an Improper Input Validation vulnerability... High Unreviewed
CVE-2024-10972 was published Dec 16, 2024
RATOC RAID Monitoring Manager for Windows provided by RATOC Systems, Inc. registers a Windows... High Unreviewed
CVE-2025-58400 was published Sep 5, 2025
The WordPress Helpdesk Integration plugin for WordPress is vulnerable to Local File Inclusion in... High Unreviewed
CVE-2025-9990 was published Sep 5, 2025
A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20... High Unreviewed
CVE-2024-51503 was published Nov 19, 2024
Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability High Unreviewed
CVE-2025-55238 was published Sep 5, 2025
In NFC, there is a possible way to setup a default contactless payment app without user consent... High Unreviewed
CVE-2021-39810 was published Oct 30, 2023
In multiple functions of AppOpsControllerImpl.java, there is a possible way to record audio... High Unreviewed
CVE-2025-48548 was published Sep 4, 2025
In multiple methods of NotificationChannel.java, there is a possible desynchronization from... High Unreviewed
CVE-2025-48556 was published Sep 4, 2025
In multiple functions of BatteryService.java, there is a possible way to hijack implicit intent... High Unreviewed
CVE-2025-48558 was published Sep 4, 2025
In onCreate of MediaProjectionPermissionActivity.java , there is a possible way to grant a... High Unreviewed
CVE-2025-32322 was published Sep 4, 2025
In multiple locations, there is a possible way to record audio via a background app due to a... High Unreviewed
CVE-2025-48549 was published Sep 4, 2025
In assertSafeToStartCustomActivity of AppRestrictionsFragment.java , there is a possible way to... High Unreviewed
CVE-2025-48535 was published Sep 4, 2025
In multiple locations, there is a possible way to persistently DoS the device due to improper... High Unreviewed
CVE-2025-48537 was published Sep 4, 2025
In processTransactInternal of RpcState.cpp, there is a possible local out of memory write due to... High Unreviewed
CVE-2025-48540 was published Sep 4, 2025
In onCreate of FaceSettings.java, there is a possible way to remove biometric unlock across user... High Unreviewed
CVE-2025-48541 was published Sep 4, 2025
In markMediaAsFavorite of MediaProvider.java, there is a possible way to bypass the... High Unreviewed
CVE-2025-48532 was published Sep 4, 2025
In smp_process_secure_connection_oob_data of smp_act.cc, there is a possible way to bypass SMP... High Unreviewed
CVE-2025-26438 was published Sep 4, 2025
In multiple locations, there is a possible way to escape chrome sandbox to attack android... High Unreviewed
CVE-2025-48543 was published Sep 4, 2025
In onNullBinding of RemoteFillService.java, there is a possible background activity launch due to... High Unreviewed
CVE-2025-48563 was published Sep 4, 2025
In SendPacketToPeer of acl_arbiter.cc, there is a possible out of bounds read due to a use after... High Unreviewed
CVE-2025-48539 was published Sep 4, 2025
An SQL injection vulnerability has been found in appRain CMF 4.0.5. This vulnerability allows an... High Unreviewed
CVE-2025-41032 was published Sep 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database