GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,159

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,158 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In JetBrains YouTrack before 2025.1.74704 restricted attachments could become visible after issue... Moderate Unreviewed

CVE-2025-47850 was published May 20, 2025

Missing authentication for critical function issue exists in I-O DATA network attached hard disk ... Moderate Unreviewed

CVE-2025-32738 was published May 15, 2025

A missing authentication vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an... Moderate Unreviewed

CVE-2025-0132 was published May 14, 2025

NetAlertX 23.01.14 through 24.x before 24.10.12 allows unauthenticated command injection via... Critical Unreviewed

CVE-2024-46506 was published May 13, 2025

CP-XR-DE21-S -4G Router Firmware version 1.031.022 was discovered to contain insecure protections... Moderate Unreviewed

CVE-2025-44039 was published May 13, 2025

A vulnerability has been identified in Desigo CC (All versions if access from Installed Clients... High Unreviewed

CVE-2024-23815 was published May 13, 2025

The ISOinsight from Netvision has a Missing Authentication vulnerability, allowing... Moderate Unreviewed

CVE-2025-4560 was published May 12, 2025

The web management interface of Okcat Parking Management Platform from ZONG YU has a Missing... Critical Unreviewed

CVE-2025-4555 was published May 12, 2025

The specific APIs of Parking Management System from ZONG YU has a Missing Authentication... Critical Unreviewed

CVE-2025-4557 was published May 12, 2025

A flaw was found in systems utilizing LUKS-encrypted disks with GRUB configured for TPM-based... Moderate Unreviewed

CVE-2025-4382 was published May 9, 2025

WF2220 exposes endpoint /cgi-bin-igd/netcore_get.cgi that returns configuration of the device to... High Unreviewed

CVE-2025-3758 was published May 8, 2025

Endpoint /cgi-bin-igd/netcore_set.cgi which is used for changing device configuration is... High Unreviewed

CVE-2025-3759 was published May 8, 2025

A vulnerability in the management API of Cisco Catalyst Center, formerly Cisco DNA Center, could... High Unreviewed

CVE-2025-20210 was published May 7, 2025

A vulnerability has been found in TOTOLINK A720R 4.1.5cu.374 and classified as critical. This... Moderate Unreviewed

CVE-2025-4268 was published May 5, 2025

IBM Business Automation Workflow 24.0.0 and 24.0.1 through 24.0.1 IF001 Center may leak sensitive... Moderate Unreviewed

CVE-2025-1495 was published May 3, 2025

An access issue was addressed with improved access restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-24271 was published Apr 29, 2025

WGS-80HPT-V2 and WGS-4215-8T2S are missing authentication that could allow an attacker to create... Critical Unreviewed

CVE-2025-46275 was published Apr 25, 2025

HCL MyXalytics is affected by a failure to restrict URL access vulnerability. Unauthenticated... Low Unreviewed

CVE-2024-42178 was published Apr 18, 2025

Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component: iSurvey... Critical Unreviewed

CVE-2025-30727 was published Apr 15, 2025

An attacker could modify or disable settings, disrupt fuel monitoring and supply chain... Critical Unreviewed

CVE-2025-2567 was published Apr 15, 2025

Prisma Access Browser: Inappropriate control behavior in Prisma Access Browser Critical Unreviewed

CVE-2025-0129 was published Apr 12, 2025

Missing Authentication for Critical Function vulnerability in Drupal Panels allows Exploiting... Moderate Unreviewed

CVE-2025-3474 was published Apr 9, 2025

Missing authentication for critical function vulnerability exists in Wi-Fi AP UNIT 'AC-WPS-11ac... High Unreviewed

CVE-2025-29870 was published Apr 9, 2025

A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). The web... High Unreviewed

CVE-2024-41793 was published Apr 8, 2025

A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). The web... Moderate Unreviewed

CVE-2024-41791 was published Apr 8, 2025

Previous 1…5…47 Next

Previous 1 2 3 4 5 6 7 … 46 47 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,158 advisories