Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,701
Maven
5,000+
npm
4,328
NuGet
761
pip
4,103
Pub
12
RubyGems
958
Rust
1,064
Swift
45
Unreviewed advisories
All unreviewed
5,000+

569 advisories

Loading
A vulnerability was found in Buttercup buttercup-browser-extension up to 0.14.2. Affected by this... Low Unreviewed
CVE-2017-20199 was published Aug 16, 2025
SupportAssist for Business PCs, version(s) 4.5.3 and prior, contain(s) an Incorrect Privilege... Moderate Unreviewed
CVE-2025-36612 was published Aug 14, 2025
SupportAssist for Home PCs Installer exe version(s) 4.8.2.29006 and prior, contain(s) an... Moderate Unreviewed
CVE-2025-38738 was published Aug 14, 2025
SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4... Low Unreviewed
CVE-2025-36613 was published Aug 14, 2025
Incorrect Privilege Assignment vulnerability in Ben Ritner - Kadence WP Kadence WooCommerce Email... High Unreviewed
CVE-2025-54697 was published Aug 14, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 18.0.6, 18.1... Moderate Unreviewed
CVE-2024-12303 was published Aug 13, 2025
An incorrect privilege assignment vulnerability [CWE-266] in FortiOS Security Fabric version 7.6... High Unreviewed
CVE-2025-53744 was published Aug 12, 2025
The SAP NetWeaver Application Server for ABAP does not enable an administrator to assign... Moderate Unreviewed
CVE-2025-42936 was published Aug 12, 2025
OpenBao Root Namespace Operator May Elevate Token Privileges High
CVE-2025-54996 was published for github.com/openbao/openbao (Go) Aug 8, 2025
A vulnerability was determined in jshERP up to 3.5. Affected is an unknown function of the file ... Moderate Unreviewed
CVE-2025-8840 was published Aug 11, 2025
A vulnerability was found in jshERP up to 3.5. This issue affects some unknown processing of the... Moderate Unreviewed
CVE-2025-8839 was published Aug 11, 2025
A vulnerability was found in LitmusChaos Litmus up to 3.19.0 and classified as critical. This... Moderate Unreviewed
CVE-2025-8797 was published Aug 10, 2025
A vulnerability, which was classified as critical, was found in LitmusChaos Litmus up to 3.19.0.... Moderate Unreviewed
CVE-2025-8795 was published Aug 10, 2025
A vulnerability was found in LitmusChaos Litmus up to 3.19.0. It has been rated as critical. This... Moderate Unreviewed
CVE-2025-8791 was published Aug 10, 2025
A vulnerability was found in Portabilis i-Educar up to 2.9.0. It has been declared as critical.... Moderate Unreviewed
CVE-2025-8790 was published Aug 10, 2025
An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can elevate to... Moderate Unreviewed
CVE-2025-31513 was published Jul 22, 2025
A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic.... High Unreviewed
CVE-2025-8758 was published Aug 9, 2025
A vulnerability has been found in TDuckCloud tduck-platform up to 5.1 and classified as critical.... Moderate Unreviewed
CVE-2025-8756 was published Aug 9, 2025
A vulnerability was found in TRENDnet TV-IP110WN 1.2.2 and classified as problematic. Affected by... High Unreviewed
CVE-2025-8757 was published Aug 9, 2025
A vulnerability has been found in atjiu pybbs up to 6.0.0 and classified as critical. This... Moderate Unreviewed
CVE-2025-8547 was published Aug 5, 2025
Vault Community Edition privilege escalation vulnerability High
CVE-2024-9180 was published for github.com/hashicorp/vault (Go) Oct 10, 2024
westonsteimel
Credited to westonsteimel
Hashicorp Vault has Privilege Escalation Vulnerability High
CVE-2025-5999 was published for github.com/hashicorp/vault (Go) Aug 1, 2025
Duplicate Advisory: users may append `root` to group listings High
GHSA-jq8x-v7jw-v675 was published for users (Rust) Jun 6, 2025 withdrawn
A vulnerability classified as critical has been found in jshERP up to 3.5. Affected is an unknown... Moderate Unreviewed
CVE-2025-7947 was published Jul 22, 2025
An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on... Moderate Unreviewed
CVE-2025-2179 was published Jul 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database