GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,393
Composer 4,825
Erlang 36
GitHub Actions 32
Go 2,417
Maven 5,811
npm 4,054
NuGet 723
pip 3,845
Pub 12
RubyGems 933
Rust 1,005
Swift 38

Unreviewed advisories

All unreviewed 264,914

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

37 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The gh package before 1.5.0 for R delivers an HTTP response in a data structure that includes the... Low Unreviewed

CVE-2025-54956 was published Aug 3, 2025

WordPress 3.5 through 6.8.2 allows remote attackers to guess titles of private and draft posts... Low Unreviewed

CVE-2025-54352 was published Jul 21, 2025

qBittorrent before 5.1.2 does not prevent access to a local file that is referenced in a link URL... Moderate Unreviewed

CVE-2025-54310 was published Jul 18, 2025

An unauthenticated remote attacker could use a demo account of the portal to hijack devices that... High Unreviewed

CVE-2025-41645 was published May 13, 2025

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Use... Moderate Unreviewed

CVE-2024-42158 was published Jul 30, 2024

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of... High Unreviewed

CVE-2023-44104 was published Oct 11, 2023

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of... High Unreviewed

CVE-2023-44100 was published Oct 11, 2023

An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300.... Critical Unreviewed

CVE-2023-31114 was published Jun 7, 2023

An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300.... High Unreviewed

CVE-2023-31115 was published Jun 7, 2023

An issue was discovered in TigerGraph Enterprise Free Edition 3.x. Data loading jobs in... Moderate Unreviewed

CVE-2023-22950 was published Apr 13, 2023

PHP Remote File Inclusion in GitHub repository tsolucio/corebos prior to 8.0. Critical Unreviewed

CVE-2022-4446 was published Dec 13, 2022

Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An... High Unreviewed

CVE-2022-31233 was published Sep 1, 2022

A CWE-669: Incorrect Resource Transfer Between Spheres vulnerability exists that could allow... High Unreviewed

CVE-2022-30236 was published Jun 3, 2022

The HM Multiple Roles WordPress plugin before 1.3 does not have any access control to prevent low... High Unreviewed

CVE-2021-24602 was published May 24, 2022

In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an authenticated attacker can... Moderate Unreviewed

CVE-2021-34574 was published May 24, 2022

Firefox used to cache the last filename used for printing a file. When generating a filename for... Moderate Unreviewed

CVE-2021-29960 was published May 24, 2022

A vulnerability allowed multiple unrestricted uploads in Pulse Connect Secure before 9.1R11.4... High Unreviewed

CVE-2021-22900 was published May 24, 2022

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain an improper authentication vulnerability. A... Moderate Unreviewed

CVE-2021-21544 was published May 24, 2022

Dell Unisphere for PowerMax versions prior to 9.2.1.6 contain an Authorization Bypass... High Unreviewed

CVE-2021-21531 was published May 24, 2022

IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a user to impersonate another... High Unreviewed

CVE-2021-20411 was published May 24, 2022

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, a client-side control... Moderate Unreviewed

CVE-2020-27268 was published May 24, 2022

The affected versions of S+ Operations (version 2.1 SP1 and earlier) used an approach for user... Critical Unreviewed

CVE-2020-24683 was published May 24, 2022

An issue was discovered in apply.cgi on D-Link DAP-1520 devices before 1.10b04Beta02. Whenever a... High Unreviewed

CVE-2020-15892 was published May 24, 2022

An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly... High Unreviewed

CVE-2020-1048 was published May 24, 2022

V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability.... Moderate Unreviewed

CVE-2020-6862 was published May 24, 2022

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

37 advisories