Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,830 advisories

Loading
Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA and SaaS... High Unreviewed
CVE-2025-34204 was published Sep 19, 2025
Improper Privilege Management vulnerability in GE Vernova S1 Agile Configuration Software on... High Unreviewed
CVE-2025-9038 was published Sep 22, 2025
An issue was discovered in Mahara 23.04.8 and 24.04.4. Attackers may utilize escalation of... High Unreviewed
CVE-2024-47853 was published Aug 26, 2025
Tandoor Recipes 2.0.0-alpha-1, fixed in 2.0.0-alpha-2, is vulnerable to privilege escalation.... Moderate Unreviewed
CVE-2025-57396 was published Sep 19, 2025
An issue was discovered in PPress 0.0.9 allowing attackers to gain escilated privlidges via... High Unreviewed
CVE-2025-54761 was published Sep 19, 2025
An authenticated attacker granted a Viewer or Auditor role on a BIG-IQ can upload arbitrary files... Moderate Unreviewed
CVE-2023-29240 was published Jul 6, 2023
SoftIron HyperCloud 2.5.0 through 2.6.3 may incorrectly add user SSH keys to the administrator... High Unreviewed
CVE-2025-10650 was published Sep 18, 2025
Cross-process screen stack vulnerability in the UIExtension module Impact: Successful... Moderate Unreviewed
CVE-2024-54110 was published Dec 12, 2024
Access permission verification vulnerability in the Notepad module Impact: Successful... Low Unreviewed
CVE-2024-42036 was published Aug 8, 2024
A local privilege escalation vulnerability exists in NSClient++ 0.5.2.35 when both the web... High Unreviewed
CVE-2025-34078 was published Jul 2, 2025
A vulnerability in the command-line interface of HPE Aruba Networking EdgeConnect SD-WAN Gateways... High Unreviewed
CVE-2025-37123 was published Sep 17, 2025
With address book access, SMB/FTP settings could be modified, redirecting scans and possibly... High Unreviewed
CVE-2024-12511 was published Feb 3, 2025
An issue in PHPGurukul Online-Library-Management-System v3.0 allows an attacker to escalate... Critical Unreviewed
CVE-2025-57118 was published Sep 16, 2025
Privilege escalation occurs when a user gets access to more resources or functionality than they... Moderate Unreviewed
CVE-2025-8660 was published Aug 11, 2025
Excessive Privileges vulnerability in Calix GigaCenter ONT (Quantenna SoC modules) allows... High Unreviewed
CVE-2025-53913 was published Sep 9, 2025
Excessive Privileges vulnerability in Calix GigaCenter ONT (Broadcom SoC modules) allows... High Unreviewed
CVE-2025-53914 was published Sep 9, 2025
The Altiris Core Agent Updater package (AeXNSC.exe) is prone to an elevation of privileges... High Unreviewed
CVE-2025-9059 was published Sep 11, 2025
The eudskacs.sys driver version 20250328 shipped with EaseUs Todo Backup 1.2.0.1 fails to... High Unreviewed
CVE-2025-50892 was published Sep 10, 2025
Coder vulnerable to privilege escalation could lead to a cross workspace compromise High
CVE-2025-58437 was published for github.com/coder/coder/v2 (Go) Sep 5, 2025
johnstcn
Credited to johnstcn
K7RKScan.sys 23.0.0.10, part of the K7 Security Anti-Malware suite, allows an admin-privileged... High Unreviewed
CVE-2025-52915 was published Sep 9, 2025
A link following vulnerability in the Trend Micro Apex One scan engine could allow a local... High Unreviewed
CVE-2025-49156 was published Jun 17, 2025
A link following vulnerability in the Trend Micro Apex One Damage Cleanup Engine could allow a... High Unreviewed
CVE-2025-49157 was published Jun 17, 2025
A vulnerability has been identified in SINAMICS G220 V6.4 (All versions < V6.4 HF2), SINAMICS... Moderate Unreviewed
CVE-2025-40594 was published Sep 9, 2025
Dell PowerScale OneFS, versions prior to 9.12.0.0, contains an improper privilege management... Moderate Unreviewed
CVE-2025-43722 was published Sep 8, 2025
In shouldAllowFgsWhileInUsePermissionLocked of ActiveServices.java, there is a possible way to... High Unreviewed
CVE-2022-20356 was published Aug 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database