Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,701
Maven
5,000+
npm
4,328
NuGet
761
pip
4,103
Pub
12
RubyGems
958
Rust
1,064
Swift
45
Unreviewed advisories
All unreviewed
5,000+

336 advisories

Loading
This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.6... Moderate Unreviewed
CVE-2025-43260 was published Jul 30, 2025
An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on... Moderate Unreviewed
CVE-2025-2179 was published Jul 29, 2025
A vulnerability was found in Vaelsys 4.1.0 and classified as critical. This issue affects some... Moderate Unreviewed
CVE-2025-8261 was published Jul 28, 2025
An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can elevate to... Moderate Unreviewed
CVE-2025-31513 was published Jul 22, 2025
A vulnerability classified as critical has been found in jshERP up to 3.5. Affected is an unknown... Moderate Unreviewed
CVE-2025-7947 was published Jul 22, 2025
A vulnerability was found in Teledyne FLIR FB-Series O and FLIR FH-Series ID 1.3.2.16 and... Moderate Unreviewed
CVE-2025-7576 was published Jul 14, 2025
A vulnerability was found in Dromara Northstar up to 7.3.5. It has been rated as critical.... Moderate Unreviewed
CVE-2025-7552 was published Jul 14, 2025
An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on... Moderate Unreviewed
CVE-2025-0140 was published Jul 10, 2025
An incorrect privilege assignment vulnerability in Palo Alto Networks Autonomous Digital... Moderate Unreviewed
CVE-2025-0139 was published Jul 10, 2025
The Linux deprivileged user vpuser in Radiflow iSAP Smart Collector (CentOS 7 - VSAP 1.20) can... Moderate Unreviewed
CVE-2025-27028 was published Jul 9, 2025
SAPCAR allows an attacker logged in with high privileges to override the permissions of the... Moderate Unreviewed
CVE-2025-43001 was published Jul 8, 2025
SAPCAR allows an attacker logged in with high privileges to create a malicious SAR archive in... Moderate Unreviewed
CVE-2025-42992 was published Jul 8, 2025
A vulnerability was found in BlackVue Dashcam 590X up to 20250624. It has been rated as critical.... Moderate Unreviewed
CVE-2025-7076 was published Jul 6, 2025
A vulnerability, which was classified as critical, has been found in Intelbras InControl 2.21.60... Moderate Unreviewed
CVE-2025-6765 was published Jun 27, 2025
NVIDIA AIStore contains a vulnerability in the AIS Operator where a user may gain elevated k8s... Moderate Unreviewed
CVE-2025-23260 was published Jun 26, 2025
A vulnerability classified as problematic was found in NOYAFA/Xiami LF9 Pro up to 20250611.... Moderate Unreviewed
CVE-2025-6532 was published Jun 26, 2025
A vulnerability classified as problematic was found in 70mai 1S up to 20250611. This... Moderate Unreviewed
CVE-2025-6525 was published Jun 26, 2025
A vulnerability, which was classified as problematic, was found in linlinjava litemall 1.8.0.... Moderate Unreviewed
CVE-2025-6702 was published Jun 26, 2025
A vulnerability was found in SIFUSM/MZZYG BD S1 up to 20250611. It has been declared as... Moderate Unreviewed
CVE-2025-6531 was published Jun 26, 2025
New authd users logging in via SSH are members of the root group Moderate
CVE-2025-5689 was published for github.com/ubuntu/authd (Go) Jun 16, 2025
A vulnerability was found in szluyu99 gin-vue-blog up to 61dd11ccd296e8642a318ada3ef7b3f7776d2410... Moderate Unreviewed
CVE-2025-6099 was published Jun 16, 2025
An incorrect privilege assignment vulnerability in Palo Alto Networks Cortex® XDR Broker VM... Moderate Unreviewed
CVE-2025-4228 was published Jun 13, 2025
A vulnerability classified as critical has been found in SourceCodester Student Result Management... Moderate Unreviewed
CVE-2025-5649 was published Jun 5, 2025
An issue in Unifiedtransform v2.0 allows a remote attacker to escalate privileges via the ... Moderate Unreviewed
CVE-2025-46203 was published Jun 4, 2025
An issue in Unifiedtransform v2.0 allows a remote attacker to escalate privileges via the /course... Moderate Unreviewed
CVE-2025-46204 was published Jun 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database