GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,775
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,124
npm 4,308
NuGet 760
pip 4,080
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,258

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

409 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Voltronic Power ViewPower through 1.04-21353 and PowerShield Netguard before 1.04-23292 allows a... Critical Unreviewed

CVE-2022-43110 was published Aug 22, 2025

Incorrect access control in the doFilter function of my-site v1.0.2.RELEASE allows attackers to... Critical Unreviewed

CVE-2024-53496 was published Aug 22, 2025

Improper access control in Azure Databricks allows an unauthorized attacker to elevate privileges... Critical Unreviewed

CVE-2025-53763 was published Aug 21, 2025

An issue was discovered in TitanHQ SpamTitan Email Security Gateway 8.00.x before 8.00.101 and 8... Critical Unreviewed

CVE-2024-45438 was published Aug 21, 2025

Incorrect access control in radar v1.0.8 allows attackers to bypass authentication and access... Critical Unreviewed

CVE-2024-57155 was published Aug 20, 2025

Incorrect access control in dts-shop v0.0.1-SNAPSHOT allows attackers to bypass authentication... Critical Unreviewed

CVE-2024-57154 was published Aug 20, 2025

Incorrect access control in Jantent v1.1 allows attackers to bypass authentication and access... Critical Unreviewed

CVE-2024-57157 was published Aug 20, 2025

Institute-of-Current-Students 1.0 is vulnerable to Incorrect Access Control in the... Critical Unreviewed

CVE-2025-50870 was published Aug 1, 2025

An access control issue in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows unauthenticated... Critical Unreviewed

CVE-2025-26062 was published Jul 31, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Critical Unreviewed

CVE-2025-43232 was published Jul 30, 2025

This issue was addressed with improved access restrictions. This issue is fixed in macOS Sequoia... Critical Unreviewed

CVE-2025-43233 was published Jul 30, 2025

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.6, macOS... Critical Unreviewed

CVE-2025-43194 was published Jul 30, 2025

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15... Critical Unreviewed

CVE-2025-43198 was published Jul 30, 2025

A configuration issue was addressed with additional restrictions. This issue is fixed in macOS... Critical Unreviewed

CVE-2025-43192 was published Jul 30, 2025

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in... Critical Unreviewed

CVE-2025-43184 was published Jul 30, 2025

An issue was discovered on IROAD Dashcam FX2 devices. Bypass of Device Pairing/Registration can... Critical Unreviewed

CVE-2025-30133 was published Jul 28, 2025

A privilege escalation vulnerability exists in the login.php functionality of meddream MedDream... Critical Unreviewed

CVE-2025-27724 was published Jul 28, 2025

In Linksys E2500 3.0.04.002, the chroot_local_user option is enabled in the vsftpd configuration... Critical Unreviewed

CVE-2025-44654 was published Jul 21, 2025

In some mod_ssl configurations on Apache HTTP Server 2.4.35 through to 2.4.63, an access control... Critical Unreviewed

CVE-2025-23048 was published Jul 10, 2025

linjiashop <=0.9 is vulnerable to Incorrect Access Control. When using the default-generated JWT... Critical Unreviewed

CVE-2025-52101 was published Jul 1, 2025

Northern.tech Mender Server before 3.7.11 and 4.x before 4.0.1 has Incorrect Access Control. Critical Unreviewed

CVE-2025-49603 was published Jun 26, 2025

Arc before 1.26.1 on Windows has a bypass issue in the site settings that allows websites (with... Critical Unreviewed

CVE-2024-52928 was published Jun 26, 2025

A settings manipulation vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute... Critical Unreviewed

CVE-2023-47297 was published Jun 23, 2025

The Versa Director SD-WAN orchestration platform which makes use of Cisco NCS application service... Critical Unreviewed

CVE-2024-45208 was published Jun 19, 2025

Tinxy WiFi Lock Controller v1 RF was discovered to be configured to transmit on an open Wi-Fi... Critical Unreviewed

CVE-2025-44619 was published May 30, 2025

Previous 12…17 Next

Previous 1 2 3 4 5 … 16 17 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

409 advisories