Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,820
Erlang
36
GitHub Actions
32
Go
2,412
Maven
5,000+
npm
4,050
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,004
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

49 advisories

Loading
In TOTOLink A7100RU V7.4, A950RG V5.9, and T10 V5.9, the chroot_local_user option is enabled in... Critical Unreviewed
CVE-2025-44655 was published Jul 21, 2025
Incorrect Privilege Assignment vulnerability in Unity Business Technology Pty Ltd The E-Commerce... Critical Unreviewed
CVE-2025-52836 was published Jul 16, 2025
Incorrect Privilege Assignment vulnerability in InspiryThemes RealHomes allows Privilege... Critical Unreviewed
CVE-2025-49867 was published Jul 4, 2025
Incorrect Privilege Assignment vulnerability in aonetheme Service Finder Booking allows Privilege... Critical Unreviewed
CVE-2025-23970 was published Jul 4, 2025
Improper mstatus.SUM bit retention (non-zero) in Open-Source RISC-V Processor commit f517abb... Critical Unreviewed
CVE-2025-45006 was published Jul 1, 2025
Incorrect Privilege Assignment vulnerability in Holest Engineering Spreadsheet Price Changer for... Critical Unreviewed
CVE-2025-48129 was published Jun 9, 2025
Incorrect Privilege Assignment vulnerability in Themewinter Eventin allows Privilege Escalation.... Critical Unreviewed
CVE-2025-47539 was published May 23, 2025
Incorrect Privilege Assignment vulnerability in pebas CouponXL allows Privilege Escalation. This... Critical Unreviewed
CVE-2025-39489 was published May 23, 2025
Incorrect Privilege Assignment vulnerability in quantumcloud Simple Business Directory Pro allows... Critical Unreviewed
CVE-2025-31918 was published May 23, 2025
Incorrect Privilege Assignment vulnerability in Brainstorm Force SureTriggers allows Privilege... Critical Unreviewed
CVE-2025-27007 was published May 1, 2025
NETSCOUT nGeniusONE before 6.4.0 b2350 has a Weak Sudo Configuration. Critical Unreviewed
CVE-2025-32980 was published Apr 25, 2025
The Service Finder Bookings plugin for WordPress, used by the Service Finder - Directory and Job... Critical Unreviewed
CVE-2025-2470 was published Apr 25, 2025
Incorrect Privilege Assignment vulnerability in Projectopia Projectopia allows Privilege... Critical Unreviewed
CVE-2025-32648 was published Apr 17, 2025
Incorrect Privilege Assignment vulnerability in Rankology Rankology SEO – On-site SEO... Critical Unreviewed
CVE-2025-32491 was published Apr 11, 2025
Incorrect Privilege Assignment vulnerability in Mestres do WP Checkout Mestres WP allows... Critical Unreviewed
CVE-2025-32695 was published Apr 9, 2025
Incorrect Privilege Assignment vulnerability in Favethemes Homey allows Privilege Escalation.This... Critical Unreviewed
CVE-2024-51800 was published Apr 4, 2025
SnapCenter versions prior to 6.0.1P1 and 6.1P1 are susceptible to a vulnerability which may... Critical Unreviewed
CVE-2025-26512 was published Mar 25, 2025
A vulnerability, which was classified as very critical, was found in IROAD Dash Cam X5 and Dash... Critical Unreviewed
CVE-2025-2345 was published Mar 16, 2025
DaVinci Resolve on MacOS was found to be installed with incorrect file permissions (rwxrwxrwx).... Critical Unreviewed
CVE-2025-1413 was published Feb 28, 2025
The DHVC Form plugin for WordPress is vulnerable to privilege escalation in all versions up to,... Critical Unreviewed
CVE-2024-8420 was published Feb 28, 2025
Incorrect Privilege Assignment vulnerability in NotFound K Elements allows Privilege Escalation.... Critical Unreviewed
CVE-2024-56000 was published Feb 18, 2025
The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions... Critical Unreviewed
CVE-2024-12213 was published Feb 12, 2025
The Real Estate 7 WordPress theme for WordPress is vulnerable to Privilege Escalation in all... Critical Unreviewed
CVE-2024-13421 was published Feb 12, 2025
Incorrect Privilege Assignment vulnerability in NotFound Homey Login Register allows Privilege... Critical Unreviewed
CVE-2024-51888 was published Jan 21, 2025
Incorrect Privilege Assignment vulnerability in NotFound Easy Real Estate allows Privilege... Critical Unreviewed
CVE-2024-32555 was published Jan 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database