Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

768 advisories

Loading
An authorization issue was addressed with improved state management. This issue is fixed in tvOS... Critical Unreviewed
CVE-2025-31255 was published Sep 16, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.8. An... Moderate Unreviewed
CVE-2025-43231 was published Sep 16, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.5. An... High Unreviewed
CVE-2025-31249 was published May 13, 2025
A race condition flaw was found in sssd where the GPO policy is not consistently applied for... High Unreviewed
CVE-2023-3758 was published Apr 18, 2024
A security flaw has been discovered in code-projects Client Details System 1.0. The impacted... Moderate Unreviewed
CVE-2025-12283 was published Oct 27, 2025
A vulnerability was identified in fushengqian fuint up to... Low Unreviewed
CVE-2025-12623 was published Nov 3, 2025
The SiteSEO – SEO Simplified plugin for WordPress is vulnerable to Missing Authorization in... Moderate Unreviewed
CVE-2025-12367 was published Nov 1, 2025
The Document Library Lite plugin for WordPress is vulnerable to Improper Authorization in all... Moderate Unreviewed
CVE-2025-11174 was published Nov 1, 2025
Emerson DeltaV 10.3.1, 11.3, 11.3.1, and 12.3 allows local users to modify or read configuration... Moderate Unreviewed
CVE-2014-2349 was published May 17, 2022
A vulnerability was detected in Webkul QloApps up to 1.7.0. This affects an unknown function of... Moderate Unreviewed
CVE-2025-10759 was published Sep 22, 2025
Kazaar 1.25.12 allows /api/v1/org-id/orders/order-id/documents calls with a modified order-id. Moderate Unreviewed
CVE-2025-59686 was published Oct 1, 2025
Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected... Moderate Unreviewed
CVE-2025-22175 was published Oct 22, 2025
A vulnerability was detected in Bdtask Pharmacy Management System up to 9.4. Affected is an... Moderate Unreviewed
CVE-2025-12288 was published Oct 27, 2025
The Password Protected plugin for WordPress is vulnerable to authorization bypass via IP address... Low Unreviewed
CVE-2025-11244 was published Oct 25, 2025
The GenerateBlocks plugin for WordPress is vulnerable to unauthorized access of data due to a... Moderate Unreviewed
CVE-2025-11879 was published Oct 25, 2025
The WP VR – 360 Panorama and Free Virtual Tour Builder For WordPress plugin for WordPress is... Moderate Unreviewed
CVE-2025-12005 was published Oct 25, 2025
The Tutor LMS Pro – eLearning and online course solution plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-6639 was published Oct 25, 2025
Moodle has a time restriction bypass Moderate
CVE-2025-62401 was published for moodle/moodle (Composer) Oct 23, 2025
Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected... Moderate Unreviewed
CVE-2025-22173 was published Oct 22, 2025
Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected... Moderate Unreviewed
CVE-2025-22176 was published Oct 22, 2025
Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected... Moderate Unreviewed
CVE-2025-22169 was published Oct 22, 2025
Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected... Moderate Unreviewed
CVE-2025-22172 was published Oct 22, 2025
Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected... Moderate Unreviewed
CVE-2025-22174 was published Oct 22, 2025
Jira Align is vulnerable to an authorization issue. A low-privilege user can access unexpected... Moderate Unreviewed
CVE-2025-22177 was published Oct 22, 2025
Jira Align is vulnerable to an authorization issue. A low-privilege user is able to alter the... Moderate Unreviewed
CVE-2025-22171 was published Oct 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database