GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,823
Composer 5,445
Erlang 46
GitHub Actions 47
Go 3,323
Maven 6,333
npm 5,334
NuGet 880
pip 4,533
Pub 12
RubyGems 1,010
Rust 1,201
Swift 51

Unreviewed advisories

All unreviewed 295,352

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

42 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker... High Unreviewed

CVE-2026-20126 was published Feb 25, 2026

A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote... Moderate Unreviewed

CVE-2026-20122 was published Feb 25, 2026

Apache Airflow Has an Authorization Bypass That Allows Unauthorized Task Log Access Moderate

CVE-2026-22922 was published for apache-airflow (pip) Feb 9, 2026

Credited to saivarun3407 and tei-dunamu

tei-dunamu

Incorrect Use of Privileged APIs vulnerability in NomySost Information Technology Training and... High Unreviewed

CVE-2025-1161 was published Dec 10, 2025

When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object... Moderate Unreviewed

CVE-2025-63291 was published Nov 14, 2025

A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). The... High Unreviewed

CVE-2024-32008 was published Nov 11, 2025

An authenticated, read-only user can kill any processes running on the Xormon Original virtual... Moderate Unreviewed

CVE-2025-54767 was published Jul 29, 2025

An API endpoint that should be limited to web application administrators is hidden from, but... Moderate Unreviewed

CVE-2025-54766 was published Jul 29, 2025

An API endpoint that should be limited to web application administrators is hidden from, but... Moderate Unreviewed

CVE-2025-54768 was published Jul 29, 2025

An API endpoint that should be limited to web application administrators is hidden from, but... Moderate Unreviewed

CVE-2025-54765 was published Jul 29, 2025

Incorrect Use of Privileged APIs vulnerability in Beamsec PhishPro allows Privilege Abuse.This... High Unreviewed

CVE-2025-5997 was published Jul 28, 2025

The EAI developed by Digiwin has a Privilege Escalation vulnerability, allowing remote attackers... High Unreviewed

CVE-2025-7344 was published Jul 21, 2025

Dell PowerProtect Data Manager Reporting, version(s) 19.17, contain(s) an Incorrect Use of... High Unreviewed

CVE-2025-23375 was published Apr 28, 2025

Incorrect Use of Privileged APIs vulnerability in OpenText™ Operations Bridge Manager, OpenText™... High Unreviewed

CVE-2022-26323 was published Apr 17, 2025

In affected versions of Octopus Deploy where customers are using Active Directory for... Moderate Unreviewed

CVE-2025-0589 was published Feb 11, 2025

Bentley Systems ProjectWise Integration Server before 10.00.03.288 allows unintended SQL query... Moderate Unreviewed

CVE-2024-53007 was published Jan 31, 2025

In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could... Critical Unreviewed

CVE-2024-8785 was published Dec 2, 2024

The D-Link DSL6740C modem has an Incorrect Use of Privileged APIs vulnerability, allowing... Critical Unreviewed

CVE-2024-11068 was published Nov 11, 2024

org.xwiki.platform:xwiki-platform-notifications-ui is missing checks for notification filter preferences editions High

CVE-2024-46978 was published for org.xwiki.platform:xwiki-platform-notifications-ui (Maven) Sep 18, 2024

Credited to floerer

The OpenDaylight 0.15.3 controller allows topology poisoning via API requests because an... Critical Unreviewed

CVE-2024-37018 was published May 31, 2024

Improper Privilege Management vulnerability in ExtremePacs Extreme XDS allows Collect Data as... High Unreviewed

CVE-2023-6522 was published Apr 5, 2024

Improper Privilege Management vulnerability in Utarit Information Technologies SoliPay Mobile App... High Unreviewed

CVE-2023-4993 was published Feb 15, 2024

A vulnerability has been identified in Unicam FX (All versions). The windows installer agent used... High Unreviewed

CVE-2024-22042 was published Feb 13, 2024

Improper Privilege Management vulnerability in ESKOM Computer e-municipality module allows... High Unreviewed

CVE-2023-6150 was published Nov 28, 2023

Improper Privilege Management vulnerability in ESKOM Computer e-municipality module allows... High Unreviewed

CVE-2023-6151 was published Nov 28, 2023

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

42 advisories