GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,588

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,302 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM Jazz Foundation 7.0.2 to 7.0.2 iFix035, 7.0.3 to 7.0.3 iFix018, and 7.1.0 to 7.1.0 iFix004... Critical Unreviewed

CVE-2025-36157 was published Aug 24, 2025

An Improper Access Control could allow a malicious actor authenticated in the API of certain... Moderate Unreviewed

CVE-2025-27213 was published Aug 21, 2025

In JetBrains IntelliJ IDEA before 2025.2 improper access control allowed Code With Me guest to... Moderate Unreviewed

CVE-2025-57728 was published Aug 20, 2025

MiR software versions prior to version 3.0.0 have insufficient authorization controls when... Moderate Unreviewed

CVE-2025-9228 was published Aug 20, 2025

IBM Storage Virtualize 8.4, 8.5, 8.6, and 8.7 could allow an authenticated user to escalate their... High Unreviewed

CVE-2025-36120 was published Aug 18, 2025

A security issue exists within the 5032 16pt Digital Configurable module’s web server. The web... High Unreviewed

CVE-2025-7773 was published Aug 14, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 15.6 before 18.0.6, 18.1... Moderate Unreviewed

CVE-2024-10219 was published Aug 13, 2025

A vulnerability has been identified in SmartClient modules Opcenter QL Home (SC) (All versions >=... High Unreviewed

CVE-2024-41979 was published Aug 12, 2025

Due to broken authorization, SAP Business One (SLD) allows an authenticated attacker to gain... High Unreviewed

CVE-2025-42951 was published Aug 12, 2025

A vulnerability was identified in the XPC services of Fantastical. The services failed to... Moderate Unreviewed

CVE-2025-8533 was published Aug 7, 2025

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,... Moderate Unreviewed

CVE-2025-20332 was published Aug 6, 2025

Adobe Experience Manager versions 6.5.23 and earlier are affected by a Misconfiguration... Critical Unreviewed

CVE-2025-54253 was published Aug 5, 2025

tiaudit in Tera Insights tiCrypt before 2025-07-17 allows unauthenticated REST API requests that... Moderate Unreviewed

CVE-2025-54554 was published Aug 5, 2025

In the Airoha Bluetooth audio SDK, there is a possible way to pair Bluetooth audio device without... High Unreviewed

CVE-2025-20701 was published Aug 4, 2025

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-8068 was published Jul 31, 2025

An authorization issue was addressed with improved state management. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43251 was published Jul 30, 2025

The issue was addressed with additional permissions checks. This issue is fixed in iPadOS 17.7.9,... Moderate Unreviewed

CVE-2025-43230 was published Jul 30, 2025

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia... Moderate Unreviewed

CVE-2025-43197 was published Jul 30, 2025

In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings... Moderate Unreviewed

CVE-2025-54532 was published Jul 28, 2025

In JetBrains TeamCity before 2025.07 improper access control allowed disclosure of build settings... Moderate Unreviewed

CVE-2025-54533 was published Jul 28, 2025

In Malwarebytes Binisoft Windows Firewall Control before 6.16.0.0, the installer is vulnerable to... Moderate Unreviewed

CVE-2025-54569 was published Jul 28, 2025

Abnormal Security /v1.0/rbac/users_v2/{USER_ID}/ before 2025-02-19 allows downgrading the... Moderate Unreviewed

CVE-2025-54596 was published Jul 25, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 18.0.5, 18.1... Moderate Unreviewed

CVE-2025-0765 was published Jul 25, 2025

A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux... High Unreviewed

CVE-2025-6018 was published Jul 23, 2025

An incorrect authorisation check in the the 'plant transfer' function of the Growatt cloud... Critical Unreviewed

CVE-2025-29757 was published Jul 19, 2025

Previous 1…3…93 Next

Previous 1 2 3 4 5 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,302 advisories