GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,616

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,303 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security issue was discovered within Verve Asset Manager allowing unauthorized read-only users... High Unreviewed

CVE-2025-11862 was published Nov 11, 2025

The Flexible Refund and Return Order for WooCommerce plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12621 was published Nov 8, 2025

Improper Authorization in Elastic Cloud Enterprise can lead to Privilege Escalation where the... High Unreviewed

CVE-2025-37736 was published Nov 8, 2025

An authentication issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed

CVE-2025-43459 was published Nov 4, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... High Unreviewed

CVE-2025-43387 was published Nov 4, 2025

A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43397 was published Nov 4, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43336 was published Nov 4, 2025

The Folderly plugin for WordPress is vulnerable to unauthorized modification of data due to an... Moderate Unreviewed

CVE-2025-12038 was published Nov 1, 2025

Nagios Log Server versions prior to 2024R2.0.3 contain an incorrect authorization vulnerability... High Unreviewed

CVE-2025-34273 was published Oct 31, 2025

Nagios Log Server versions prior to 2024R1 contain an incorrect authorization vulnerability.... High Unreviewed

CVE-2023-7322 was published Oct 31, 2025

GitLab has remediated an issue in GitLab EE affecting all versions from 10.6 before 18.3.5, 18.4... Moderate Unreviewed

CVE-2025-11971 was published Oct 27, 2025

The ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution plugin for... Low Unreviewed

CVE-2025-11888 was published Oct 25, 2025

The Restaurant Brands International (RBI) assistant platform through 2025-09-06 does not... Moderate Unreviewed

CVE-2025-62651 was published Oct 17, 2025

The Restaurant Brands International (RBI) assistant platform through 2025-09-06 provides the... Moderate Unreviewed

CVE-2025-62647 was published Oct 17, 2025

The Restaurant Brands International (RBI) assistant platform through 2025-09-06 allows remote... Moderate Unreviewed

CVE-2025-62648 was published Oct 17, 2025

An Incorrect Authorization vulnerability has been identified in Moxa’s network security... High Unreviewed

CVE-2025-6892 was published Oct 17, 2025

Due to an insufficient access control implementation in multiple WSO2 Products, authentication... Critical Unreviewed

CVE-2025-10611 was published Oct 16, 2025

An improper access control vulnerability exists in WSO2 Enterprise Integrator product due to... Moderate Unreviewed

CVE-2025-9955 was published Oct 16, 2025

Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and... Moderate Unreviewed

CVE-2025-54277 was published Oct 14, 2025

SAP S/4HANA (Manage Processing Rules - For Bank Statements) allows an authenticated attacker with... Moderate Unreviewed

CVE-2025-42939 was published Oct 14, 2025

The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to authorization... Moderate Unreviewed

CVE-2025-7374 was published Oct 10, 2025

GitLab has remediated an issue in GitLab EE affecting all versions from 18.3 to 18.3.4, 18.4 to... High Unreviewed

CVE-2025-11340 was published Oct 9, 2025

Nagios Log Server before 2024R1.3.2 allows authenticated users (with read-only API access) to... High Unreviewed

CVE-2025-44824 was published Oct 7, 2025

An access control vulnerability was discovered in the CLI functionality due to a specific access... High Unreviewed

CVE-2025-3719 was published Oct 7, 2025

The YoSmart YoLink MQTT broker through 2025-10-02 does not enforce sufficient authorization... Moderate Unreviewed

CVE-2025-59449 was published Oct 6, 2025

Previous1…93 Next

Previous 1 2 3 4 5 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,303 advisories