GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,136

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,834 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability within the Software Updater functionality of Avira Security for Windows allowed... High Unreviewed

CVE-2022-3368 was published Oct 18, 2022

Brocade Webtools in Brocade Fabric OS versions before Brocade Fabric OS versions v9.1.1, v9.0.1e,... High Unreviewed

CVE-2022-28169 was published Oct 26, 2022

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed

CVE-2024-21111 was published Apr 17, 2024

On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device... High Unreviewed

CVE-2024-8100 was published May 8, 2025

On Arista CloudVision systems (virtual or physical on-premise deployments), Zero Touch... Critical Unreviewed

CVE-2025-0505 was published May 8, 2025

In Simple Exam Reviewer Management System v1.0 the User List function has improper access control... Moderate Unreviewed

CVE-2022-42197 was published Oct 20, 2022

OpenStack Kolla sudo privilege escalation vulnerability High

CVE-2022-38060 was published for kolla (pip) Dec 21, 2022

An authenticated attacker could read Nessus Debug Log file attachments from the web UI without... Moderate Unreviewed

CVE-2022-33757 was published Oct 25, 2022

A vulnerability in Cisco Nexus Dashboard could allow an authenticated, local attacker with valid... Moderate Unreviewed

CVE-2024-20282 was published Apr 3, 2024

The Woocommerce Multiple Addresses plugin for WordPress is vulnerable to Privilege Escalation in... High Unreviewed

CVE-2025-4335 was published May 7, 2025

The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to privilege escalation via account... High Unreviewed

CVE-2025-3852 was published May 7, 2025

266 vulnerability in Crestron Automate VX allows Privilege Escalation.This issue affects Automate... High Unreviewed

CVE-2025-47420 was published May 7, 2025

The Automatic User Roles Switcher WordPress plugin before 1.1.2 does not have authorisation and... Moderate Unreviewed

CVE-2022-3419 was published Oct 31, 2022

A logic issue was addressed with improved state management. This issue is fixed in Security... High Unreviewed

CVE-2022-32794 was published Nov 2, 2022

This issue was addressed with improved checks. This issue is fixed in tvOS 16, iOS 16, watchOS 9.... High Unreviewed

CVE-2022-32907 was published Nov 2, 2022

An issue in Coresmartcontracts Uniswap v.3.0 and fixed in v.4.0 allows a remote attacker to... Critical Unreviewed

CVE-2025-25962 was published Apr 29, 2025

Insufficient control flow management in the firmware for some Intel(R) Processors may allow an... High Unreviewed

CVE-2021-0099 was published Feb 11, 2022

Improper access control in the firmware for some Intel(R) Processors may allow an unauthenticated... High Unreviewed

CVE-2021-0091 was published Feb 11, 2022

Insufficient compartmentalization in HECI subsystem for the Intel(R) SPS before versions... High Unreviewed

CVE-2021-0060 was published Feb 11, 2022

Insufficient control flow management in the firmware for some Intel(R) Processors may allow a... Moderate Unreviewed

CVE-2021-0103 was published Feb 11, 2022

An attacker with control over a content process could potentially leverage the privileged UITour... High Unreviewed

CVE-2025-4085 was published Apr 29, 2025

The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2025-3438 was published May 2, 2025

The system framework layer has a vulnerability of serialization/deserialization mismatch.... Critical Unreviewed

CVE-2022-44562 was published Nov 10, 2022

In Zoho ManageEngine Mobile Device Manager Plus before 10.1.2207.5, the User Administration... High Unreviewed

CVE-2022-41339 was published Nov 12, 2022

XWiki uses the wrong wiki reference in AuthorizationManager High

CVE-2025-29924 was published for org.xwiki.platform:xwiki-platform-security-authorization-api (Maven) Mar 19, 2025

Previous 1…17…154 Next

Previous 1 2 … 15 16 17 18 19 … 153 154 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,834 advisories