Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,633
Erlang
34
GitHub Actions
25
Go
2,239
Maven
5,000+
npm
3,900
NuGet
701
pip
3,667
Pub
12
RubyGems
914
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,869 advisories

Loading
This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4,... High Unreviewed
CVE-2025-24173 was published Apr 1, 2025
This issue was addressed with improved authentication. This issue is fixed in iOS 18.4 and iPadOS... Low Unreviewed
CVE-2025-24193 was published Apr 1, 2025
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... High Unreviewed
CVE-2024-54533 was published Apr 1, 2025
Vite has a `server.fs.deny` bypassed for `inline` and `raw` with `?import` query Moderate
CVE-2025-31125 was published for vite (npm) Mar 31, 2025
Iuhsssss
Incorrect access control in Adtran 411 ONT L80.00.0011.M2 allows unauthorized attackers to... Critical Unreviewed
CVE-2025-22940 was published Mar 31, 2025
A vulnerability was found in WCMS 11. It has been rated as critical. Affected by this issue is... Moderate Unreviewed
CVE-2025-2978 was published Mar 31, 2025
A vulnerability, which was classified as critical, was found in code-projects College Management... Moderate Unreviewed
CVE-2025-2973 was published Mar 31, 2025
A vulnerability classified as critical was found in Bluestar Micro Mall 1.0. Affected by this... Moderate Unreviewed
CVE-2025-2952 was published Mar 30, 2025
In Splunk Enterprise versions below 9.4.1, 9.3.3, 9.2.5, and 9.1.8, and versions below 3.8.38 and... Moderate Unreviewed
CVE-2025-20230 was published Mar 27, 2025
In Splunk Enterprise versions below 9.3.3, 9.2.5, and 9.1.8, and Splunk Cloud Platform versions... High Unreviewed
CVE-2025-20229 was published Mar 27, 2025
Telesquare TLR-2005KSH 1.1.4 allows unauthorized password modification when requesting the admin... Critical Unreviewed
CVE-2025-26010 was published Mar 26, 2025
Client side access control bypass in the permission component in Devolutions Remote Desktop... Moderate Unreviewed
CVE-2025-2499 was published Mar 26, 2025
Huawei PCs have a vulnerability that allows low-privilege users to bypass SDDL permission checks ... Moderate Unreviewed
CVE-2023-52972 was published Mar 26, 2025
Vite bypasses server.fs.deny when using ?raw?? Moderate
CVE-2025-30208 was published for vite (npm) Mar 25, 2025
Ezzer17
OpenDaylight SFC Allows Unauthorized Privileged Execution via Crafted Request Critical
CVE-2025-29315 was published for org.opendaylight.sfc:sfc-parent (Maven) Mar 24, 2025
A vulnerability classified as critical was found in Digiwin ERP 5.0.1. Affected by this... Moderate Unreviewed
CVE-2025-2706 was published Mar 24, 2025
A vulnerability classified as critical has been found in Digiwin ERP 5.1. Affected is the... Moderate Unreviewed
CVE-2025-2705 was published Mar 24, 2025
A vulnerability, which was classified as critical, has been found in Softwin WMX3 3.1. This issue... Moderate Unreviewed
CVE-2025-2702 was published Mar 24, 2025
A vulnerability classified as critical has been found in PHPGurukul eLearning System 1.0.... Moderate Unreviewed
CVE-2025-2687 was published Mar 24, 2025
A vulnerability was found in Yue Lao Blind Box 月老盲盒 up to 4.0. It has been declared as critical.... Moderate Unreviewed
CVE-2025-2671 was published Mar 24, 2025
A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been... Moderate Unreviewed
CVE-2025-2606 was published Mar 21, 2025
A vulnerability was found in phplaozhang LzCMS-LaoZhangBoKeXiTong up to 1.1.4. It has been rated... Moderate Unreviewed
CVE-2025-2607 was published Mar 21, 2025
LoxiLB v.0.9.7 and before is vulnerable to Incorrect Access Control which allows attackers to... High Unreviewed
CVE-2024-53348 was published Mar 21, 2025
PipeCD Vulnerable to Privilege Escalation High
CVE-2024-53351 was published for github.com/pipe-cd/pipecd (Go) Mar 21, 2025
An IDOR vulnerability in danswer-ai/danswer v0.3.94 allows an attacker to view any files. The... Moderate Unreviewed
CVE-2024-9617 was published Mar 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database