GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,562
Composer 4,986
Erlang 39
GitHub Actions 38
Go 2,626
Maven 6,103
npm 4,258
NuGet 760
pip 4,051
Pub 12
RubyGems 954
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,266

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,821 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A correctness issue was addressed with improved checks. This issue is fixed in watchOS 11.5,... High Unreviewed

CVE-2025-31222 was published May 13, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2025-24258 was published May 13, 2025

An authenticated user without user-management permissions could view other users' account... Moderate Unreviewed

CVE-2025-46745 was published May 12, 2025

A suspended or recently logged-out user could continue to interact with Blueframe until the time... Moderate Unreviewed

CVE-2025-46741 was published May 12, 2025

An authenticated administrator could modify the Created By username for a user account Low Unreviewed

CVE-2025-46744 was published May 12, 2025

On Arista CloudVision systems (virtual or physical on-premise deployments), Zero Touch... Critical Unreviewed

CVE-2025-0505 was published May 8, 2025

On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device... High Unreviewed

CVE-2024-8100 was published May 8, 2025

The Woocommerce Multiple Addresses plugin for WordPress is vulnerable to Privilege Escalation in... High Unreviewed

CVE-2025-4335 was published May 7, 2025

The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to privilege escalation via account... High Unreviewed

CVE-2025-3852 was published May 7, 2025

266 vulnerability in Crestron Automate VX allows Privilege Escalation.This issue affects Automate... High Unreviewed

CVE-2025-47420 was published May 7, 2025

The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2025-3438 was published May 2, 2025

An issue in Coresmartcontracts Uniswap v.3.0 and fixed in v.4.0 allows a remote attacker to... Critical Unreviewed

CVE-2025-25962 was published Apr 29, 2025

An attacker with control over a content process could potentially leverage the privileged UITour... High Unreviewed

CVE-2025-4085 was published Apr 29, 2025

org.xwiki.platform:xwiki-platform-security-requiredrights-default required rights analysis doesn't consider TextAreas with default content type Critical

CVE-2025-32974 was published for org.xwiki.platform:xwiki-platform-security-requiredrights-default (Maven) Apr 29, 2025

There is a Permission Management and Access Control vulnerability in the GoldenDB database... Moderate Unreviewed

CVE-2025-46576 was published Apr 27, 2025

The Vikinger theme for WordPress is vulnerable to privilege in all versions up to, and including,... High Unreviewed

CVE-2025-2238 was published Apr 25, 2025

The Configurator Theme Core plugin for WordPress is vulnerable to privilege escalation in all... High Unreviewed

CVE-2025-3101 was published Apr 24, 2025

The My Tickets – Accessible Event Ticketing plugin for WordPress is vulnerable to Privilege... High Unreviewed

CVE-2025-3761 was published Apr 24, 2025

An improper privilege management vulnerability in the recovery function of the USG FLEX H series... Moderate Unreviewed

CVE-2025-1732 was published Apr 22, 2025

The UrbanGo Membership plugin for WordPress is vulnerable to privilege escalation in versions up... Critical Unreviewed

CVE-2025-3278 was published Apr 19, 2025

An issue in WorldCast Systems ECRESO FM/DAB/TV Transmitter v1.10.1 allows authenticated attackers... High Unreviewed

CVE-2025-28237 was published Apr 18, 2025

Omnissa Horizon Client for Windows contains an LPE Vulnerability. A malicious actor with local... High Unreviewed

CVE-2025-25230 was published Apr 17, 2025

An issue in Erick xmall v.1.1 and before allows a remote attacker to escalate privileges via the... Critical Unreviewed

CVE-2025-28399 was published Apr 15, 2025

The WPC Admin Columns plugin for WordPress is vulnerable to privilege escalation in versions 2.0... High Unreviewed

CVE-2025-3418 was published Apr 12, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and... Moderate Unreviewed

CVE-2023-38614 was published Apr 11, 2025

Previous 1…8…153 Next

Previous 1 2 … 6 7 8 9 10 … 152 153 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,821 advisories