Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,757
Erlang
35
GitHub Actions
29
Go
2,327
Maven
5,000+
npm
3,960
NuGet
712
pip
3,741
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,072 advisories

Loading
A remote unauthenticated attacker may be able to change the IP adress of the device, and... High Unreviewed
CVE-2025-32470 was published Apr 28, 2025
A vulnerability classified as critical has been found in youyiio BeyongCms 1.6.0. Affected is an... Moderate Unreviewed
CVE-2025-4006 was published Apr 28, 2025
A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been rated... Moderate Unreviewed
CVE-2025-3969 was published Apr 27, 2025
Improper access control of endpoint in HCL Leap allows certain admin users to import applications... Moderate Unreviewed
CVE-2024-30148 was published Apr 24, 2025
Codemers KLIMS 1.6.DEV lacks a proper access control mechanism, allowing a normal KLIMS user to... High Unreviewed
CVE-2025-43947 was published Apr 22, 2025
It technically possible for a user to upload a file to a conversation despite the file upload... Moderate Unreviewed
CVE-2025-3518 was published Apr 22, 2025
Incorrect access control in laskBlog v2.6.1 allows attackers to access all usernames via a... Critical Unreviewed
CVE-2025-28104 was published Apr 21, 2025
mojoPortal <=2.9.0.1 is vulnerable to Directory Traversal via BetterImageGallery API Controller -... Moderate Unreviewed
CVE-2025-28367 was published Apr 21, 2025
Incorrect access control in the HOME.php endpoint of JMBroadcast JMB0150 Firmware v1.0 allows... Critical Unreviewed
CVE-2025-28232 was published Apr 21, 2025
Incorrect access control in Orban OPTIMOD 5950 Firmware v1.0.0.2 and System v2.2.15 allows... Critical Unreviewed
CVE-2025-28229 was published Apr 21, 2025
A vulnerability was found in kuangstudy KuangSimpleBBS 1.0. It has been declared as critical.... Moderate Unreviewed
CVE-2025-3830 was published Apr 20, 2025
A vulnerability, which was classified as critical, was found in zhenfeng13 My-BBS 1.0. This... Moderate Unreviewed
CVE-2025-3807 was published Apr 19, 2025
A vulnerability, which was classified as critical, has been found in WCMS 11. This issue affects... Moderate Unreviewed
CVE-2025-3798 was published Apr 19, 2025
Incorrect access control in Itel Electronics IP Stream v1.7.0.6 allows unauthorized attackers to... Critical Unreviewed
CVE-2025-28231 was published Apr 18, 2025
Incorrect access control in BW Broadcast TX600 (14980), TX300 (32990) (31448), TX150, TX1000,... Critical Unreviewed
CVE-2025-28233 was published Apr 18, 2025
A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product... Moderate Unreviewed
CVE-2025-3783 was published Apr 18, 2025
A vulnerability, which was classified as critical, has been found in SourceCodester Web-based... Moderate Unreviewed
CVE-2025-3765 was published Apr 17, 2025
A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product... Moderate Unreviewed
CVE-2025-3764 was published Apr 17, 2025
A valid, authenticated user with sufficient privileges and who is aware of Continuous Compliance... Critical Unreviewed
CVE-2025-3113 was published Apr 17, 2025
Access Control Vulnerability in Gerrit chromiumos project configuration in Google ChromeOS 131.0... Critical Unreviewed
CVE-2025-1568 was published Apr 17, 2025
An issue in LRQA Nettitude PoshC2 after commit 09ee2cf allows unauthenticated attackers to... Moderate Unreviewed
CVE-2024-53304 was published Apr 16, 2025
Dell Alienware Command Center 6.x, versions prior to 6.7.37.0 contain an Improper Access Control... Moderate Unreviewed
CVE-2025-30100 was published Apr 16, 2025
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite ... Moderate Unreviewed
CVE-2025-30732 was published Apr 15, 2025
Vulnerability in the Oracle Configurator product of Oracle E-Business Suite (component: Core). ... High Unreviewed
CVE-2025-30728 was published Apr 15, 2025
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are... High Unreviewed
CVE-2025-30736 was published Apr 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database