Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

14 advisories

Loading
Weak authentication in Azure Machine Learning allows an authorized attacker to elevate privileges... Moderate Unreviewed
CVE-2025-47995 was published Jul 18, 2025
Weak Authentication vulnerability in AresIT WP Compress allows Authentication Abuse. This issue... Moderate Unreviewed
CVE-2025-47479 was published Jul 4, 2025
An improper authentication vulnerability [CWE-287] in Fortinet FortiClientEMS version 7.4.0 and... Moderate Unreviewed
CVE-2024-32119 was published Jun 10, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 16.8 before 17.10.7, 17... Moderate Unreviewed
CVE-2025-0605 was published May 22, 2025
An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The app there... Moderate Unreviewed
CVE-2025-32885 was published May 2, 2025
An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The app there... Moderate Unreviewed
CVE-2025-32883 was published May 2, 2025
Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature... Moderate Unreviewed
CVE-2025-26635 was published Apr 8, 2025
Cryptographic issue occurs during PIN/password verification using Gatekeeper, where RPMB writes... Moderate Unreviewed
CVE-2024-45551 was published Apr 7, 2025
Vulnerability in the JD Edwards EnterpriseOne Orchestrator product of Oracle JD Edwards ... Moderate Unreviewed
CVE-2025-21552 was published Jan 21, 2025
Weak Authentication vulnerability in Guido VS Contact Form allows Authentication Abuse.This issue... Moderate Unreviewed
CVE-2023-41862 was published Dec 13, 2024
In the goTenna Pro ATAK Plugin there is a vulnerability that makes it possible to inject any... Moderate Unreviewed
CVE-2024-41722 was published Sep 26, 2024
In the goTenna Pro there is a vulnerability that makes it possible to inject any custom message... Moderate Unreviewed
CVE-2024-47127 was published Sep 26, 2024
Weak authentication in Patch Management of Ivanti EPM before 2022 SU6, or the 2024 September... Moderate Unreviewed
CVE-2024-8322 was published Sep 10, 2024
A vulnerability was found in Quay. If an attacker can obtain the client ID for an application,... Moderate Unreviewed
CVE-2024-5891 was published Jun 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database