Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,064 advisories

Loading
Memory corruption may occur while attaching VM when the HLOS retains access to VM. High Unreviewed
CVE-2024-53010 was published Jun 3, 2025
A vulnerability, which was classified as critical, was found in chaitak-gorai Blogbook up to... Moderate Unreviewed
CVE-2025-5406 was published Jun 1, 2025
Improper access control in user group management in Devolutions Server 2025.1.7.0 and earlier... High Unreviewed
CVE-2025-4433 was published May 30, 2025
The Featured Image Plus – Quick & Bulk Edit with Unsplash plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-4431 was published May 30, 2025
Tinxy WiFi Lock Controller v1 RF was discovered to be configured to transmit on an open Wi-Fi... Critical Unreviewed
CVE-2025-44619 was published May 30, 2025
CVE-2025-27702 is a vulnerability in the management console of Absolute Secure Access prior to... Moderate Unreviewed
CVE-2025-27702 was published May 28, 2025
Incorrect access control in M2Soft CROWNIX Report & ERS affected v7.x to v7.4.3.599 and v8.x to... Moderate Unreviewed
CVE-2024-57336 was published May 28, 2025
An issue in Tenda W18E v.2.0 v.16.01.0.11 allows an attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2025-45343 was published May 28, 2025
Mautic segment cloning doesn't have a proper permission check Moderate
CVE-2024-47055 was published for mautic/core (Composer) May 28, 2025
abhisekmazumdar patrykgruszka
nick-vanpraet
Mautic's Predictable Page Indexing Might Lead to Sensitive Data Exposure Moderate
CVE-2025-5257 was published for mautic/core (Composer) May 28, 2025
Apache Commons Improper Access Control vulnerability High
CVE-2025-48734 was published for commons-beanutils:commons-beanutils (Maven) May 28, 2025
A vulnerability was found in SourceCodester Client Database Management System 1.0. It has been... Moderate Unreviewed
CVE-2025-5299 was published May 28, 2025
A vulnerability classified as critical has been found in Realce Tecnologia Queue Ticket Kiosk up... Moderate Unreviewed
CVE-2025-5178 was published May 26, 2025
A vulnerability, which was classified as critical, has been found in llisoft MTA Maita Training... Moderate Unreviewed
CVE-2025-5171 was published May 26, 2025
A vulnerability, which was classified as critical, has been found in H3C SecCenter SMP-E1114P02... Moderate Unreviewed
CVE-2025-5162 was published May 26, 2025
A vulnerability was found in Tmall Demo up to 20250505. It has been classified as critical. This... Moderate Unreviewed
CVE-2025-5130 was published May 24, 2025
A vulnerability was found in Tmall Demo up to 20250505. It has been declared as critical. This... Moderate Unreviewed
CVE-2025-5131 was published May 24, 2025
When installing Tenable Network Monitor to a non-default location on a Windows host, Tenable... High Unreviewed
CVE-2025-24916 was published May 23, 2025
In Tenable Network Monitor versions prior to 6.5.1 on a Windows host, it was found that a non... High Unreviewed
CVE-2025-24917 was published May 23, 2025
A vulnerability was found in zongzhige ShopXO 6.5.0. It has been rated as critical. This issue... Moderate Unreviewed
CVE-2025-5108 was published May 23, 2025
An access control vulnerability was discovered in Grafana OSS where an Organization administrator... Moderate Unreviewed
CVE-2025-3580 was published May 23, 2025
A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0.... Moderate Unreviewed
CVE-2025-5059 was published May 22, 2025
A vulnerability in the Cloud Connect component of Cisco Unified Contact Center Enterprise (CCE)... Moderate Unreviewed
CVE-2025-20242 was published May 21, 2025
The femanager TYPO3 extension allows Insecure Direct Object Reference Moderate
CVE-2025-48202 was published for in2code/femanager (Composer) May 21, 2025
This High severity PrivEsc (Privilege Escalation) vulnerability was introduced in versions: 9.12... High Unreviewed
CVE-2025-22157 was published May 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database