GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
3,559 advisories
Filter by severity
The Altiris Core Agent Updater package (AeXNSC.exe) is prone to an elevation of privileges...
High
Unreviewed
CVE-2025-9059
was published
Sep 11, 2025
The eudskacs.sys driver version 20250328 shipped with EaseUs Todo Backup 1.2.0.1 fails to...
High
Unreviewed
CVE-2025-50892
was published
Sep 10, 2025
Excessive Privileges vulnerability in Calix GigaCenter ONT (Quantenna SoC modules) allows...
High
Unreviewed
CVE-2025-53913
was published
Sep 9, 2025
Excessive Privileges vulnerability in Calix GigaCenter ONT (Broadcom SoC modules) allows...
High
Unreviewed
CVE-2025-53914
was published
Sep 9, 2025
K7RKScan.sys 23.0.0.10, part of the K7 Security Anti-Malware suite, allows an admin-privileged...
High
Unreviewed
CVE-2025-52915
was published
Sep 9, 2025
A vulnerability has been identified in SINAMICS G220 V6.4 (All versions < V6.4 HF2), SINAMICS...
Moderate
Unreviewed
CVE-2025-40594
was published
Sep 9, 2025
Dell PowerScale OneFS, versions prior to 9.12.0.0, contains an improper privilege management...
Moderate
Unreviewed
CVE-2025-43722
was published
Sep 8, 2025
An issue was discovered in Samsung Magician 6.3 through 8.3 on Windows. An attacker can achieve...
Moderate
Unreviewed
CVE-2025-32098
was published
Sep 5, 2025
In AccessibilityServiceConnection.java, there is a possible background activity launch due to a...
High
Unreviewed
CVE-2025-26462
was published
Sep 5, 2025
In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a...
High
Unreviewed
CVE-2025-26435
was published
Sep 5, 2025
In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a...
High
Unreviewed
CVE-2025-32345
was published
Sep 4, 2025
Diebold Nixdorf Vynamic Security Suite through 4.3.0 SR06 contains functionality that allows the...
High
Unreviewed
CVE-2024-46916
was published
Aug 29, 2025
D-Link DCS-825L firmware v1.08.01 contains a vulnerability in the watchdog script `mydlink-watch...
High
Unreviewed
CVE-2025-55582
was published
Aug 27, 2025
A non-primary administrator user with admin rights to the web interface but without shell access...
High
Unreviewed
CVE-2025-36729
was published
Aug 26, 2025
The Event List plugin for WordPress is vulnerable to privilege escalation in all versions up to,...
High
Unreviewed
CVE-2025-6366
was published
Aug 26, 2025
An issue was discovered in Mahara 23.04.8 and 24.04.4. Attackers may utilize escalation of...
High
Unreviewed
CVE-2024-47853
was published
Aug 26, 2025
The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via account takeover in...
High
Unreviewed
CVE-2025-5931
was published
Aug 26, 2025
D-Link DCS-825L firmware version 1.08.01 and possibly prior versions contain an insecure...
High
Unreviewed
CVE-2025-55581
was published
Aug 22, 2025
Insufficient privilege verification in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime ...
Moderate
Unreviewed
CVE-2025-55627
was published
Aug 22, 2025
The StrongDM Windows service incorrectly handled communication related to system certificate...
High
Unreviewed
CVE-2025-6182
was published
Aug 20, 2025
ProTip!
Advisories are also available from the
GraphQL API