GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,889
Composer 5,066
Erlang 39
GitHub Actions 38
Go 2,701
Maven 6,140
npm 4,328
NuGet 761
pip 4,103
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,796

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

881 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue in Roadcute API v.1 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed

CVE-2025-52395 was published Aug 21, 2025

jeewx-boot 1.3 has an authentication bypass vulnerability in the preHandle function Critical Unreviewed

CVE-2024-50640 was published Aug 20, 2025

JeeWMS 771e4f5d0c01ffdeae1671be4cf102b73a3fe644 (2025-05-19) contains incorrect authentication... Critical Unreviewed

CVE-2025-50901 was published Aug 20, 2025

In TOTOLINK EX1200T firmware 4.1.2cu.5215, an attacker can bypass login by sending a specific... Critical Unreviewed

CVE-2025-51451 was published Aug 13, 2025

An issue in the OTP mechanism of Chavara Family Welfare Centre Chavara Matrimony Site v2.0 allows... Critical Unreviewed

CVE-2025-45777 was published Jul 25, 2025

Due to insufficient verification, an attacker could use a malicious client to bypass... Critical Unreviewed

CVE-2024-6107 was published Jul 21, 2025

An authentication bypass vulnerability in the /web/um_open_telnet.cgi endpoint in Nexxt Solutions... Critical Unreviewed

CVE-2025-52376 was published Jul 15, 2025

Cryptographic issue occurs due to use of insecure connection method while downloading. Critical Unreviewed

CVE-2025-21450 was published Jul 8, 2025

A cookie encryption bypass vulnerability exists in Google Chrome’s AppBound mechanism due to weak... Critical Unreviewed

CVE-2025-34092 was published Jul 2, 2025

Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2... Critical Unreviewed

CVE-2025-32975 was published Jun 26, 2025

An unauthorized access vulnerability exists in the Xiaomi Mi Connect Service APP. The... Critical Unreviewed

CVE-2024-45347 was published Jun 23, 2025

An issue was discovered on COROS PACE 3 devices through 3.0808.0. It identifies itself as a... Critical Unreviewed

CVE-2025-32877 was published Jun 20, 2025

An issue was discovered in the COROS application through 3.8.12 for Android. Bluetooth pairing... Critical Unreviewed

CVE-2025-32875 was published Jun 20, 2025

Permission vulnerability in the mobile application (com.afmobi.boomplayer) may lead to the risk... Critical Unreviewed

CVE-2025-6172 was published Jun 16, 2025

Improper Authentication vulnerability in WF Steuerungstechnik GmbH airleader MASTER allows... Critical Unreviewed

CVE-2025-5597 was published Jun 4, 2025

An authentication bypass vulnerability exists in HPE StoreOnce Software. Critical Unreviewed

CVE-2025-37093 was published Jun 2, 2025

An issue in Ocuco Innovation - REPORTS.EXE v2.10.24.13 allows attackers to bypass authentication... Critical Unreviewed

CVE-2024-41198 was published May 22, 2025

An issue in Ocuco Innovation - INNOVASERVICEINTF.EXE v2.10.24.17 allows attackers to bypass... Critical Unreviewed

CVE-2024-41195 was published May 22, 2025

An issue in Ocuco Innovation - INVCLIENT.EXE v2.10.24.5 allows attackers to bypass authentication... Critical Unreviewed

CVE-2024-41197 was published May 22, 2025

An issue in Ocuco Innovation - REPORTSERVER.EXE v2.10.24.13 allows attackers to bypass... Critical Unreviewed

CVE-2024-41196 was published May 22, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the... Critical Unreviewed

CVE-2025-34027 was published May 22, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the... Critical Unreviewed

CVE-2025-34026 was published May 22, 2025

An issue in D-Link DI-8100 16.07.26A1 allows a remote attacker to bypass administrator login... Critical Unreviewed

CVE-2025-44083 was published May 21, 2025

A vulnerability, which was classified as very critical, was found in Netgear DGND3700 1.1.00.15_1... Critical Unreviewed

CVE-2025-4978 was published May 20, 2025

Improper authentication handling was identified in a set of HTTP POST requests affecting the... Critical Unreviewed

CVE-2025-3659 was published May 12, 2025

Previous 12…36 Next

Previous 1 2 3 4 5 … 35 36 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

881 advisories