Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+

155 advisories

Loading
Incorrect Privilege Assignment vulnerability in mojoomla WPAMS allows Privilege Escalation.This... High Unreviewed
CVE-2025-39405 was published May 19, 2025
An incorrect privilege management vulnerability in the OPSWAT MetaDefender Endpoint Security SDK... High Unreviewed
CVE-2025-0131 was published May 14, 2025
Nomad Enterprise (“Nomad”) jobs using the policy override option are bypassing the mandatory... High Unreviewed
CVE-2025-3744 was published May 13, 2025
IBM Maximo Application Suite 9.0 could allow an attacker with some level of access to elevate... High Unreviewed
CVE-2025-2898 was published May 6, 2025
Incorrect Privilege Assignment vulnerability in Jauhari Xelion Xelion Webchat allows Privilege... High Unreviewed
CVE-2025-39542 was published Apr 17, 2025
Incorrect Privilege Assignment vulnerability in NotFound WP User Profiles allows Privilege... High Unreviewed
CVE-2025-31524 was published Apr 10, 2025
Incorrect Privilege Assignment vulnerability in Tomdever wpForo Forum allows Privilege Escalation... High Unreviewed
CVE-2025-31420 was published Apr 4, 2025
Incorrect Privilege Assignment vulnerability in Dimitri Grassi Salon booking system allows... High Unreviewed
CVE-2025-31560 was published Apr 1, 2025
Fast CAD Reader application on MacOS was found to be installed with incorrect file permissions ... High Unreviewed
CVE-2025-2098 was published Mar 26, 2025
LiteLLM Has an Improper Authorization Vulnerability High
CVE-2025-0628 was published for litellm (pip) Mar 20, 2025
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an... High Unreviewed
CVE-2024-49561 was published Mar 17, 2025
The Directory Listings WordPress plugin – uListing plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-1653 was published Mar 15, 2025
GMOD Apollo does not have sufficient logical or access checks when updating a user's information.... High Unreviewed
CVE-2025-21092 was published Mar 5, 2025
This vulnerability exists in RupeeWeb trading platform due to insufficient authorization controls... High Unreviewed
CVE-2025-26523 was published Feb 14, 2025
An incorrect privilege assignment vulnerability [CWE-266] in Fortinet FortiOS version 7.6.0, 7.4... High Unreviewed
CVE-2024-40591 was published Feb 11, 2025
Incorrect Privilege Assignment vulnerability in wpase.com Admin and Site Enhancements (ASE)... High Unreviewed
CVE-2025-24648 was published Feb 4, 2025
Incorrect Privilege Assignment vulnerability in NotFound Admin and Site Enhancements (ASE) Pro... High Unreviewed
CVE-2024-43333 was published Feb 3, 2025
Software installed and run as a non-privileged user may conduct improper read/write operations on... High Unreviewed
CVE-2024-46974 was published Jan 31, 2025
Incorrect Privilege Assignment vulnerability in Wouter Dijkstra DD Roles allows Privilege... High Unreviewed
CVE-2025-23528 was published Jan 16, 2025
A incorrect privilege assignment in Fortinet FortiAnalyzer versions 7.4.0 through 7.4.3, 7.2.0... High Unreviewed
CVE-2024-45331 was published Jan 16, 2025
Incorrect Privilege Assignment vulnerability in WPExperts User Management allows Privilege... High Unreviewed
CVE-2025-22736 was published Jan 15, 2025
Incorrect Privilege Assignment vulnerability in Drupal Registration role allows Privilege... High Unreviewed
CVE-2024-13251 was published Jan 9, 2025
A vulnerability classified as critical has been found in REVE Antivirus 1.0.0.0 on Linux. This... High Unreviewed
CVE-2024-13206 was published Jan 9, 2025
Incorrect Privilege Assignment vulnerability in Amento Tech Pvt ltd WPGuppy allows Privilege... High Unreviewed
CVE-2024-56280 was published Jan 7, 2025
Incorrect Privilege Assignment vulnerability in AllAccessible Team Accessibility by AllAccessible... High Unreviewed
CVE-2024-49644 was published Jan 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database