Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,826
Erlang
36
GitHub Actions
32
Go
2,426
Maven
5,000+
npm
4,058
NuGet
723
pip
3,848
Pub
12
RubyGems
934
Rust
1,006
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,235 advisories

Loading
The mod_copy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files... High Unreviewed
CVE-2015-3306 was published May 13, 2022
Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow... High Unreviewed
CVE-2015-3073 was published May 17, 2022
The XcListener in SAP Afaria 7.0.6001.5 does not properly restrict access, which allows remote... High Unreviewed
CVE-2015-2816 was published May 14, 2022
The WPML plugin before 3.1.9 for WordPress does not properly handle multiple actions in a request... High Unreviewed
CVE-2015-2792 was published May 17, 2022
The UNC implementation in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server... High Unreviewed
CVE-2015-0008 was published May 13, 2022
Some Dahua software products have a vulnerability of unauthenticated restart of remote DSS Server... High Unreviewed
CVE-2022-45431 was published Dec 27, 2022
M-Link Archive Server in Isode M-Link R16.2v1 through R17.0 before R17.0v24 allows non... High Unreviewed
CVE-2022-47634 was published Jan 1, 2023
Frontend User Registration extension for TYPO3 does not properly verify access rights High
CVE-2009-1264 was published for sjbr/sr-feuser-register (Composer) May 2, 2022
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the editSave method... High Unreviewed
CVE-2025-28403 was published Apr 7, 2025
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Access... High Unreviewed
CVE-2025-30288 was published Apr 8, 2025
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the edit method of... High Unreviewed
CVE-2025-28407 was published Apr 7, 2025
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the add method of... High Unreviewed
CVE-2025-28409 was published Apr 7, 2025
Improper access control in Active Directory Domain Services allows an authorized attacker to... High Unreviewed
CVE-2025-29810 was published Apr 8, 2025
Improper access control in Visual Studio allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-29804 was published Apr 8, 2025
Improper access control in Microsoft Office allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-27744 was published Apr 8, 2025
Improper access control in Windows Defender Application Control (WDAC) allows an unauthorized... High Unreviewed
CVE-2025-26678 was published Apr 8, 2025
Flask-CORS allows the `Access-Control-Allow-Private-Network` CORS header to be set to true by default High
CVE-2024-6221 was published for Flask-Cors (pip) Aug 18, 2024
adrianosela Alex-ley-scrub
icarocd
Memory corruption may occur due top improper access control in HAB process. High Unreviewed
CVE-2025-21425 was published Apr 7, 2025
Improper access control vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows... High Unreviewed
CVE-2023-22339 was published Jan 20, 2023
This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4,... High Unreviewed
CVE-2025-24173 was published Apr 1, 2025
Lexmark products through 2023-01-10 have Improper Control of Interaction Frequency. High Unreviewed
CVE-2023-22960 was published Jan 23, 2023
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... High Unreviewed
CVE-2024-54533 was published Apr 1, 2025
A permissions issue was addressed by removing vulnerable code and adding additional checks. This... High Unreviewed
CVE-2025-30460 was published Apr 1, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.5,... High Unreviewed
CVE-2025-24229 was published Apr 1, 2025
Insufficiently Protected Credentials, : Improper Access Control vulnerability in Brivo ACS100,... High Unreviewed
CVE-2023-6259 was published Feb 20, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database