GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,889
Composer 4,870
Erlang 37
GitHub Actions 36
Go 2,500
Maven 5,942
npm 4,147
NuGet 735
pip 3,948
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,561

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

387 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the... Critical Unreviewed

CVE-2025-28413 was published Apr 7, 2025

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the jobId parameter Critical Unreviewed

CVE-2025-28402 was published Apr 7, 2025

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the changeStatus... Critical Unreviewed

CVE-2025-28405 was published Apr 7, 2025

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the selectDeptTree... Critical Unreviewed

CVE-2025-28408 was published Apr 7, 2025

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the jobLogId parameter Critical Unreviewed

CVE-2025-28406 was published Apr 7, 2025

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the editSave method... Critical Unreviewed

CVE-2025-28411 was published Apr 7, 2025

A library injection issue was addressed with additional restrictions. This issue is fixed in... Critical Unreviewed

CVE-2025-30462 was published Apr 1, 2025

This issue was addressed with improved access restrictions. This issue is fixed in visionOS 2.4,... Critical Unreviewed

CVE-2025-30433 was published Apr 1, 2025

A configuration issue was addressed with additional restrictions. This issue is fixed in macOS... Critical Unreviewed

CVE-2025-24241 was published Apr 1, 2025

Incorrect access control in Adtran 411 ONT L80.00.0011.M2 allows unauthorized attackers to... Critical Unreviewed

CVE-2025-22940 was published Mar 31, 2025

Telesquare TLR-2005KSH 1.1.4 allows unauthorized password modification when requesting the admin... Critical Unreviewed

CVE-2025-26010 was published Mar 26, 2025

OpenDaylight SFC Allows Unauthorized Privileged Execution via Crafted Request Critical

CVE-2025-29315 was published for org.opendaylight.sfc:sfc-parent (Maven) Mar 24, 2025

lunary-ai/lunary version v1.4.25 contains an improper access control vulnerability in the POST ... Critical Unreviewed

CVE-2024-8999 was published Mar 20, 2025

A Cross-Site WebSocket Hijacking (CSWSH) vulnerability in automatic1111/stable-diffusion-webui... Critical Unreviewed

CVE-2024-11045 was published Mar 20, 2025

An improper access control vulnerability in danny-avila/librechat versions prior to 0.7.6 allows... Critical Unreviewed

CVE-2024-11167 was published Mar 20, 2025

An issue was discovered on IROAD Dashcam V devices. It uses an unregistered public domain name as... Critical Unreviewed

CVE-2025-30132 was published Mar 18, 2025

An improper access control vulnerability in FortiMail version 7.4.0 configured with RADIUS... Critical Unreviewed

CVE-2023-47539 was published Mar 18, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.893 Application 20.0.2140... Critical Unreviewed

CVE-2025-27649 was published Mar 5, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.913 Application 20.0.2253... Critical Unreviewed

CVE-2025-27646 was published Mar 5, 2025

On affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run... Critical Unreviewed

CVE-2025-1260 was published Mar 4, 2025

Under certain circumstances, a user opt-in setting that Focus should require authentication... Critical Unreviewed

CVE-2025-1941 was published Mar 4, 2025

Incorrect access control in the component /rest/staffResource/create of Serosoft Solutions Pvt... Critical Unreviewed

CVE-2025-25948 was published Mar 3, 2025

Infoblox NIOS through 8.6.4 has Improper Access Control for Grids. Critical Unreviewed

CVE-2024-37567 was published Feb 28, 2025

Infoblox NIOS through 8.6.4 has Improper Authentication for Grids. Critical Unreviewed

CVE-2024-37566 was published Feb 28, 2025

Unifiedtransform v2.X is vulnerable to Incorrect Access Control. Unauthorized users can access... Critical Unreviewed

CVE-2024-53573 was published Feb 27, 2025

Previous 1…3…16 Next

Previous 1 2 3 4 5 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

387 advisories