GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,943
Composer 4,873
Erlang 37
GitHub Actions 36
Go 2,518
Maven 5,956
npm 4,156
NuGet 736
pip 3,955
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 270,194

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,205 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In JetBrains TeamCity before 2025.07 privilege escalation was possible due to incorrect directory... High Unreviewed

CVE-2025-54530 was published Jul 28, 2025

Unitree Go1 <= Go1_2022_05_11 is vulnerable to Insecure Permissions as the firmware update... High Unreviewed

CVE-2025-45467 was published Jul 25, 2025

During the AWS Client VPN client installation on Windows devices, the install process references... High Unreviewed

CVE-2025-8069 was published Jul 23, 2025

The `username:password` part was not correctly stripped from URLs in CSP reports potentially... Critical Unreviewed

CVE-2025-8031 was published Jul 22, 2025

An incorrect permissions vulnerability was reported in Elliptic Labs Virtual Lock Sensor that... High Unreviewed

CVE-2025-0886 was published Jul 17, 2025

A vulnerability related to registry permissions in the Intercept X for Windows updater prior to... High Unreviewed

CVE-2024-13972 was published Jul 17, 2025

An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the... Moderate Unreviewed

CVE-2025-41665 was published Jul 8, 2025

The Anonymous Restricted Content plugin for WordPress is vulnerable to Sensitive Information... Moderate Unreviewed

CVE-2024-11089 was published Jul 7, 2025

A security bypass vulnerability exists in Google Chrome AppBound cookie encryption mechanism due... Critical Unreviewed

CVE-2025-34090 was published Jul 2, 2025

Several services in Honor Device Co., Ltd Honor PC Manager v16.0.0.118 was discovered to connect... High Unreviewed

CVE-2025-46014 was published Jun 30, 2025

The Nix, Lix, and Guix package managers default to using temporary build directories in a world... Low Unreviewed

CVE-2025-52991 was published Jun 27, 2025

pdns specific as packaged in Debian in version before 3.3.1-1 creates a too privileged MySQL user... Critical Unreviewed

CVE-2014-7210 was published Jun 26, 2025

A vulnerability exists in MicroSCADA X SYS600 product. If exploited this could allow a local... Moderate Unreviewed

CVE-2025-39201 was published Jun 24, 2025

The Postbox's configuration on macOS, specifically the presence of entitlements: "com.apple... Moderate Unreviewed

CVE-2025-5963 was published Jun 20, 2025

The Phoenix Code's configuration on macOS, specifically the presence of entitlements: "com.apple... Moderate Unreviewed

CVE-2025-5255 was published Jun 20, 2025

Permissions Bypass in Extension Management in Google ChromeOS 16181.27.0 on managed... Critical Unreviewed

CVE-2025-6179 was published Jun 16, 2025

In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non... High Unreviewed

CVE-2025-36632 was published Jun 16, 2025

An incorrect default permissions vulnerability was reported in the MotoSignature application that... Low Unreviewed

CVE-2025-1699 was published Jun 11, 2025

A vulnerability has been identified in Energy Services (All versions with G5DFR). Affected... Critical Unreviewed

CVE-2025-40585 was published Jun 10, 2025

Local privilege escalation due to insecure file permissions. The following products are affected:... Moderate Unreviewed

CVE-2025-48959 was published Jun 4, 2025

Incorrect default permissions issue in PC Time Tracer prior to 5.2. If exploited, arbitrary code... High Unreviewed

CVE-2025-46355 was published Jun 3, 2025

An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... High Unreviewed

CVE-2025-23105 was published Jun 2, 2025

An improper default permissions vulnerability was reported in Lenovo PC Manager that could allow... High Unreviewed

CVE-2025-2502 was published May 30, 2025

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... Moderate Unreviewed

CVE-2025-31261 was published May 30, 2025

Use of entitlement "com.apple.security.cs.disable-library-validation" and lack of launch and... Moderate Unreviewed

CVE-2025-4081 was published May 29, 2025

Previous 12…49 Next

Previous 1 2 3 4 5 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,205 advisories