Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,830 advisories

Loading
, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'. High Unreviewed
CVE-2020-17089 was published May 24, 2022
, aka 'Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability'. This CVE ID... High Unreviewed
CVE-2020-17103 was published May 24, 2022
, aka 'Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability'. This CVE ID... High Unreviewed
CVE-2020-17134 was published May 24, 2022
, aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from... High Unreviewed
CVE-2020-16963 was published May 24, 2022
, aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from... High Unreviewed
CVE-2020-16958 was published May 24, 2022
, aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from... High Unreviewed
CVE-2020-16960 was published May 24, 2022
, aka 'Windows Backup Engine Elevation of Privilege Vulnerability'. This CVE ID is unique from... High Unreviewed
CVE-2020-16959 was published May 24, 2022
D-Link DCS-825L firmware v1.08.01 contains a vulnerability in the watchdog script `mydlink-watch... High Unreviewed
CVE-2025-55582 was published Aug 27, 2025
Contao does not properly manage privileges for page and article fields Moderate
CVE-2025-57759 was published for contao/contao (Composer) Aug 28, 2025
lukasbableck
Credited to lukasbableck
In btif_dm_auth_cmpl_evt of btif_dm.cc, there is a possible vulnerability in Cross-Transport Key... Critical Unreviewed
CVE-2022-20361 was published Aug 11, 2022
A GitHub App installed in organizations could upgrade some permissions from read to write access... High Unreviewed
CVE-2024-8810 was published Nov 8, 2024
A non-primary administrator user with admin rights to the web interface but without shell access... High Unreviewed
CVE-2025-36729 was published Aug 26, 2025
The Event List plugin for WordPress is vulnerable to privilege escalation in all versions up to,... High Unreviewed
CVE-2025-6366 was published Aug 26, 2025
The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via account takeover in... High Unreviewed
CVE-2025-5931 was published Aug 26, 2025
Langflow Vulnerable to Privilege Escalation via CLI Superuser Creation (Post-RCE) High
CVE-2025-57760 was published for langflow (pip) Aug 25, 2025
chaandrey
Credited to chaandrey
D-Link DCS-825L firmware version 1.08.01 and possibly prior versions contain an insecure... High Unreviewed
CVE-2025-55581 was published Aug 22, 2025
An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX... High Unreviewed
CVE-2021-32025 was published Mar 11, 2022
Insufficient privilege verification in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime ... Moderate Unreviewed
CVE-2025-55627 was published Aug 22, 2025
Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a... Moderate Unreviewed
CVE-2024-6758 was published Aug 12, 2024
The StrongDM Windows service incorrectly handled communication related to system certificate... High Unreviewed
CVE-2025-6182 was published Aug 20, 2025
There is an improper privilege management vulnerability identified in ManageEngine's Asset... High Unreviewed
CVE-2025-8309 was published Aug 20, 2025
CWE-269: Improper Privilege Management vulnerability exists that could cause privilege escalation... High Unreviewed
CVE-2025-8453 was published Aug 20, 2025
The Real Spaces - WordPress Properties Directory Theme theme for WordPress is vulnerable to... Critical Unreviewed
CVE-2025-6758 was published Aug 19, 2025
The Real Spaces - WordPress Properties Directory Theme theme for WordPress is vulnerable to... High Unreviewed
CVE-2025-8218 was published Aug 19, 2025
An issue in Adtran 411 ONT vL80.00.0011.M2 allows attackers to escalate privileges via... Critical Unreviewed
CVE-2025-22937 was published Mar 31, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database