Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

9,969 advisories

Loading
The OpenUrlToBuffer method in the BWOCXRUN.BwocxrunCtrl.1 ActiveX control in bwocxrun.ocx in... Moderate Unreviewed
CVE-2014-0771 was published May 17, 2022
An issue in user interface in Kyocera Command Center RX EXOSYS M5521cdn allows remote to obtain... High Unreviewed
CVE-2023-49367 was published Sep 18, 2025
An OData injection vulnerability exists in the BIG-IP Next Central Manager API (URI).  Note:... High Unreviewed
CVE-2024-21793 was published May 8, 2024
An SQL injection vulnerability exists in the BIG-IP Next Central Manager API (URI).  Note:... High Unreviewed
CVE-2024-26026 was published May 8, 2024
Ericsson Catalog Manager and Ericsson Order Care APIs do not have authentication enabled by... Moderate Unreviewed
CVE-2024-25011 was published Sep 18, 2025
File read permission bypass vulnerability in the kernel file system module Impact: Successful... Moderate Unreviewed
CVE-2025-31171 was published Apr 7, 2025
Arbitrary write vulnerability in the Gallery module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-57955 was published Feb 6, 2025
Cross-process screen stack vulnerability in the UIExtension module Impact: Successful... Moderate Unreviewed
CVE-2024-56435 was published Jan 8, 2025
Out-of-bounds data read vulnerability in the authorization module Impact: Successful exploitation... Moderate Unreviewed
CVE-2025-46591 was published May 6, 2025
Permission verification vulnerability in the media library module Impact: Successful exploitation... Moderate Unreviewed
CVE-2024-57954 was published Feb 6, 2025
Permission management vulnerability in the lock screen module Impact: Successful exploitation of... Moderate Unreviewed
CVE-2024-58046 was published Mar 4, 2025
Vulnerability of improper access permission in the HDC module Impact: Successful exploitation of... Moderate Unreviewed
CVE-2024-58050 was published Mar 4, 2025
A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Impacted is an... Moderate Unreviewed
CVE-2025-10607 was published Sep 17, 2025
This vulnerability affects Firefox < 143. High Unreviewed
CVE-2025-10535 was published Sep 16, 2025
FDSK Leak in ABB, Busch-Jaeger, FTS Display (version 1.00) and BCU (version 1.3.0.33) allows... Critical Unreviewed
CVE-2024-4008 was published Jun 5, 2024
A vulnerability was identified in WuKongOpenSource WukongCRM 11.0. This affects an unknown part... Moderate Unreviewed
CVE-2025-8852 was published Aug 11, 2025
There is an an information disclosure vulnerability in ZTE T5400. Due to improper configuration... Low Unreviewed
CVE-2025-26710 was published Sep 16, 2025
There is an unauthorized access vulnerability in ZTE T5400. Due to improper permission control of... Moderate Unreviewed
CVE-2025-26711 was published Sep 16, 2025
The The Events Calendar plugin for WordPress is vulnerable to Information Exposure in all... Moderate Unreviewed
CVE-2025-9808 was published Sep 16, 2025
Windows Themes Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38030 was published Jul 9, 2024
Windows Themes Spoofing Vulnerability Moderate Unreviewed
CVE-2024-21320 was published Jan 9, 2024
Atlantis Exposes Service Version Publicly on /status API Endpoint Low
CVE-2025-58445 was published for github.com/runatlantis/atlantis (Go) Sep 5, 2025
matthewmrichter
Credited to matthewmrichter
Moderate severity vulnerability that affects org.bouncycastle:bcprov-jdk14 and org.bouncycastle:bcprov-jdk15 Moderate
CVE-2015-7940 was published for org.bouncycastle:bcprov-jdk14 (Maven) Oct 17, 2018
An issue was discovered in AXIS BANK LIMITED Axis Mobile App 9.9 allowing attackers to gain... Moderate Unreviewed
CVE-2025-56467 was published Sep 12, 2025
A flaw has been found in Wavlink WL-WN578W2 221110. Impacted is an unknown function of the file ... Moderate Unreviewed
CVE-2025-10321 was published Sep 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database