GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,557
Composer 5,386
Erlang 44
GitHub Actions 46
Go 3,270
Maven 6,323
npm 5,240
NuGet 867
pip 4,517
Pub 12
RubyGems 998
Rust 1,194
Swift 51

Unreviewed advisories

All unreviewed 294,249

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

49 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability exists in REB500 for an authenticated user with Installer role to access and... High Unreviewed

CVE-2026-2459 was published Feb 24, 2026

A vulnerability exists in REB500 for an authenticated user with low-level privileges to access... High Unreviewed

CVE-2026-2460 was published Feb 24, 2026

Privilege Defined With Unsafe Actions, Missing Authentication for Critical Function vulnerability... High Unreviewed

CVE-2025-14349 was published Feb 13, 2026

Privilege Defined With Unsafe Actions vulnerability in Drupal Role Delegation allows Privilege... Moderate Unreviewed

CVE-2026-0945 was published Feb 4, 2026

Privilege Defined With Unsafe Actions vulnerability in Drupal Mini site allows Stored XSS.This... Moderate Unreviewed

CVE-2025-13979 was published Jan 28, 2026

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed

CVE-2025-62591 was published Oct 21, 2025

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed

CVE-2025-62588 was published Oct 21, 2025

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed

CVE-2025-62587 was published Oct 21, 2025

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed

CVE-2025-62589 was published Oct 21, 2025

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed

CVE-2025-62590 was published Oct 21, 2025

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed

CVE-2025-62641 was published Oct 21, 2025

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component:... Low Unreviewed

CVE-2025-62480 was published Oct 21, 2025

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Block... Low Unreviewed

CVE-2025-62479 was published Oct 21, 2025

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component:... Moderate Unreviewed

CVE-2025-62289 was published Oct 21, 2025

Vulnerability in the Oracle Health Sciences Data Management Workbench product of Oracle Health... Moderate Unreviewed

CVE-2025-62288 was published Oct 21, 2025

Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: Web Service API)... Moderate Unreviewed

CVE-2025-61754 was published Oct 21, 2025

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). The... Moderate Unreviewed

CVE-2025-53070 was published Oct 21, 2025

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A... High Unreviewed

CVE-2025-41244 was published Sep 29, 2025

A privilege escalation issue has been discovered in GitLab EE affecting all versions from 16.6... Moderate Unreviewed

CVE-2025-7691 was published Sep 26, 2025

Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions (4.0.16 only) High

CVE-2025-26467 was published for org.apache.cassandra:cassandra-all (Maven) Aug 25, 2025

In Wing FTP Server through 7.4.4, the administrative web interface (listening by default on port... Moderate Unreviewed

CVE-2025-47811 was published Jul 10, 2025

Privilege Defined With Unsafe Actions vulnerability in Drupal Two-factor Authentication (TFA)... Moderate Unreviewed

CVE-2025-7030 was published Jul 8, 2025

An attacker with knowledge of creating user accounts during VM deployment on Google Cloud... High Unreviewed

CVE-2025-2903 was published Apr 17, 2025

Apache Cassandra: User with MODIFY permission on ALL KEYSPACES can escalate privileges to superuser via unsafe actions High

CVE-2025-23015 was published for org.apache.cassandra:cassandra-all (Maven) Feb 4, 2025

An issue was discovered in DTEX DEC-M (DTEX Forwarder) 6.1.1. The com.dtexsystems.helper service,... High Unreviewed

CVE-2024-55968 was published Jan 29, 2025

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

49 advisories