Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,830 advisories

Loading
A local privilege escalation vulnerability exists in Commvault for Windows versions 11.20.0, 11... High Unreviewed
CVE-2024-13975 was published Jul 25, 2025
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Virtual... High Unreviewed
CVE-2024-6151 was published Jul 10, 2024
Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix... High Unreviewed
CVE-2024-6286 was published Jul 10, 2024
In OceanBase's Oracle tenant mode, a malicious user with specific privileges can achieve... Moderate Unreviewed
CVE-2025-8107 was published Jul 25, 2025
Authentik has insufficient check for account active status when authenticating with OAuth/SAML Sources High
CVE-2025-53942 was published for goauthentik.io (Go) Jul 22, 2025
pascalwei
Credited to pascalwei
A local privilege escalation vulnerability exists in lastore-daemon, the system package manager... High Unreviewed
CVE-2016-15045 was published Jul 23, 2025
The WPLMS theme for WordPress is vulnerable to Privilege Escalation in versions 1.5.2 to 1.8.4.1... High Unreviewed
CVE-2015-10139 was published Jul 19, 2025
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are... High Unreviewed
CVE-2025-50069 was published Jul 15, 2025
Vulnerability in the Oracle GraalVM for JDK product of Oracle Java SE (component: Native Image). ... Low Unreviewed
CVE-2025-50065 was published Jul 15, 2025
Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Core product of Oracle PeopleSoft ... High Unreviewed
CVE-2025-50062 was published Jul 15, 2025
Vulnerability in the Oracle Database Materialized View component of Oracle Database Server. ... Low Unreviewed
CVE-2025-50066 was published Jul 15, 2025
Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle... Moderate Unreviewed
CVE-2025-50061 was published Jul 15, 2025
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)... Moderate Unreviewed
CVE-2025-50064 was published Jul 15, 2025
Liferay Portal and Liferay DXP Fails to Check Permissions in Translation Module Moderate
CVE-2022-38512 was published for com.liferay.portal:release.dxp.bom (Maven) Sep 23, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2025-53024 was published Jul 15, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed
CVE-2025-53030 was published Jul 15, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed
CVE-2025-53025 was published Jul 15, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed
CVE-2025-53026 was published Jul 15, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Low Unreviewed
CVE-2025-53029 was published Jul 15, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2025-53027 was published Jul 15, 2025
The HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. plugin... Critical Unreviewed
CVE-2025-7341 was published Jul 15, 2025
Installation file of ESET security products on Windows allow an attacker to misuse to delete an... Moderate Unreviewed
CVE-2025-5028 was published Jul 11, 2025
Apache StreamPipes has improper privilege management in a REST interface Moderate
CVE-2024-24778 was published for org.apache.streampipes:streampipes-parent (Maven) Mar 3, 2025
A potential security vulnerability has been identified in the HP Support Assistant, which allows... Moderate Unreviewed
CVE-2025-43019 was published Jul 8, 2025
A low privileged local attacker can leverage insecure permissions via SSH on the affected devices... High Unreviewed
CVE-2025-24006 was published Jul 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database