Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,056
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,822 advisories

Loading
A privilege escalation vulnerability in PocketBook InkPad Color 3 allows attackers to escalate to... High Unreviewed
CVE-2025-1424 was published Mar 4, 2025
A Sudo privilege misconfiguration vulnerability in PocketBook InkPad Color 3 on Linux, ARM allows... Moderate Unreviewed
CVE-2025-1425 was published Mar 4, 2025
Apache StreamPipes has improper privilege management in a REST interface Moderate
CVE-2024-24778 was published for org.apache.streampipes:streampipes-parent (Maven) Mar 3, 2025
The DHVC Form plugin for WordPress is vulnerable to privilege escalation in all versions up to,... Critical Unreviewed
CVE-2024-8420 was published Feb 28, 2025
Infoblox NIOS through 8.6.4 executes with more privileges than required. Critical Unreviewed
CVE-2024-36046 was published Feb 28, 2025
The Templines Elementor Helper Core plugin for WordPress is vulnerable to privilege escalation in... High Unreviewed
CVE-2025-1295 was published Feb 27, 2025
The Bricks theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and... High Unreviewed
CVE-2024-2297 was published Feb 27, 2025
HCL MyCloud is affected by Improper Access Control - an unauthenticated privilege escalation... Moderate Unreviewed
CVE-2024-30150 was published Feb 26, 2025
IBM Watson Query on Cloud Pak for Data 4.0.0 through 4.0.9, 4.5.0 through 4.5.3, 4.6.0 through 4... Moderate Unreviewed
CVE-2024-22341 was published Feb 22, 2025
Authenticated privilege escalation in NetScaler Console and NetScaler Agent allows. High Unreviewed
CVE-2024-12284 was published Feb 20, 2025
Symantec Diagnostic Tool (SymDiag), prior to 3.0.79, may be susceptible to a Privilege Escalation... High Unreviewed
CVE-2025-0893 was published Feb 19, 2025
An issue in Orbe ONetView Roeador Onet-1200 Orbe 1680210096 allows a remote attacker to escalate... Moderate Unreviewed
CVE-2024-57778 was published Feb 14, 2025
CWE-269: Improper Privilege Management vulnerability exists for two services (of which one... High Unreviewed
CVE-2025-0327 was published Feb 13, 2025
Easy!Appointments Improper Restriction of Excessive Authentication Attempts Critical
CVE-2024-57602 was published for alextselegidis/easyappointments (Composer) Feb 13, 2025
An issue in Nothing Tech Nothing OS v.2.6 allows a local attacker to escalate privileges via the... High Unreviewed
CVE-2024-51440 was published Feb 13, 2025
MaysWind ezBookkeeping has Improper Privilege Management Critical
CVE-2024-57604 was published for github.com/mayswind/ezbookkeeping (Go) Feb 13, 2025
An issue in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 allows attackers to terminate... Low Unreviewed
CVE-2024-51324 was published Feb 12, 2025
A DLL hijacking vulnerability in the AMD Ryzen™ Master Utility could allow an attacker to... High Unreviewed
CVE-2024-21966 was published Feb 11, 2025
Ash Authentication has flawed token revocation checking logic in actions generated by `mix ash_authentication.install` Moderate
CVE-2025-25202 was published for ash_authentication (Erlang) Feb 11, 2025
wilburyang zachdaniel
jimsynz
Credited to wilburyang, zachdaniel, and jimsynz
The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up... Critical Unreviewed
CVE-2025-0180 was published Feb 11, 2025
An issue in trojan v.2.0.0 through v.2.15.3 allows a remote attacker to escalate privileges via... Critical Unreviewed
CVE-2024-55215 was published Feb 8, 2025
The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager through V10 R1.54.1 and... High Unreviewed
CVE-2025-23093 was published Feb 6, 2025
MobSF Local Privilege Escalation High
CVE-2025-24805 was published for mobsf (pip) Feb 5, 2025
Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to... High Unreviewed
CVE-2024-11467 was published Feb 5, 2025
With address book access, SMB/FTP settings could be modified, redirecting scans and possibly... High Unreviewed
CVE-2024-12511 was published Feb 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database