GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,585
Composer 4,992
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,056
Pub 12
RubyGems 955
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,359

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,414 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue in Ocuco Innovation v.2.10.24.51 allows a local attacker to escalate privileges via the... High Unreviewed

CVE-2024-40460 was published May 22, 2025

An issue in OrangeHRM v.5.7 allows an attacker to escalate privileges via the UserService.php and... High Unreviewed

CVE-2025-44040 was published May 21, 2025

Dell PowerScale InsightIQ, versions 5.0 through 5.2, contains an improper privilege management... High Unreviewed

CVE-2025-30475 was published May 15, 2025

Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed

CVE-2025-29976 was published May 13, 2025

Improper privilege management in Windows Secure Kernel Mode allows an authorized attacker to... High Unreviewed

CVE-2025-27468 was published May 13, 2025

Improper Privilege Management vulnerability in Centreon web (API Token creation form modules)... High Unreviewed

CVE-2025-4646 was published May 13, 2025

A correctness issue was addressed with improved checks. This issue is fixed in watchOS 11.5,... High Unreviewed

CVE-2025-31222 was published May 13, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2025-24258 was published May 13, 2025

On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device... High Unreviewed

CVE-2024-8100 was published May 8, 2025

The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to privilege escalation via account... High Unreviewed

CVE-2025-3852 was published May 7, 2025

The Woocommerce Multiple Addresses plugin for WordPress is vulnerable to Privilege Escalation in... High Unreviewed

CVE-2025-4335 was published May 7, 2025

266 vulnerability in Crestron Automate VX allows Privilege Escalation.This issue affects Automate... High Unreviewed

CVE-2025-47420 was published May 7, 2025

An attacker with control over a content process could potentially leverage the privileged UITour... High Unreviewed

CVE-2025-4085 was published Apr 29, 2025

The Vikinger theme for WordPress is vulnerable to privilege in all versions up to, and including,... High Unreviewed

CVE-2025-2238 was published Apr 25, 2025

The Configurator Theme Core plugin for WordPress is vulnerable to privilege escalation in all... High Unreviewed

CVE-2025-3101 was published Apr 24, 2025

The My Tickets – Accessible Event Ticketing plugin for WordPress is vulnerable to Privilege... High Unreviewed

CVE-2025-3761 was published Apr 24, 2025

An issue in WorldCast Systems ECRESO FM/DAB/TV Transmitter v1.10.1 allows authenticated attackers... High Unreviewed

CVE-2025-28237 was published Apr 18, 2025

Omnissa Horizon Client for Windows contains an LPE Vulnerability. A malicious actor with local... High Unreviewed

CVE-2025-25230 was published Apr 17, 2025

The WPC Admin Columns plugin for WordPress is vulnerable to privilege escalation in versions 2.0... High Unreviewed

CVE-2025-3418 was published Apr 12, 2025

An app may be able to elevate privileges. This issue is fixed in macOS 14. This issue was... High Unreviewed

CVE-2023-41076 was published Apr 11, 2025

Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to... High Unreviewed

CVE-2025-29800 was published Apr 8, 2025

The Vehica Core plugin for WordPress, used by the Vehica - Car Dealer & Listing WordPress Theme,... High Unreviewed

CVE-2025-3105 was published Apr 4, 2025

An issue in BambooHR Build v.25.0210.170831-83b08dd allows a remote attacker to escalate... High Unreviewed

CVE-2025-29033 was published Apr 1, 2025

VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor... High Unreviewed

CVE-2025-22231 was published Apr 1, 2025

Local privilege escalation through insecure DCOM configuration in Valmet DNA versions prior to... High Unreviewed

CVE-2025-0416 was published Apr 1, 2025

Previous 1…5…97 Next

Previous 1 2 3 4 5 6 7 … 96 97 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,414 advisories