GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,776
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,124
npm 4,308
NuGet 760
pip 4,081
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,377

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,155 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

When a master password is set, it is required to be entered again before stored passwords can be... Moderate Unreviewed

CVE-2019-11733 was published May 24, 2022

A vulnerability was found in harry0703 MoneyPrinterTurbo up to 1.2.6 and classified as critical.... Moderate Unreviewed

CVE-2025-7897 was published Jul 20, 2025

A vulnerability was found in SimStudioAI sim up to 37786d371e17d35e0764e1b5cd519d873d90d97b. It... Moderate Unreviewed

CVE-2025-7114 was published Jul 7, 2025

When multiple server blocks are configured to share the same IP address and port, an attacker can... Moderate Unreviewed

CVE-2025-23419 was published Feb 5, 2025

A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions < V2.6.6),... Moderate Unreviewed

CVE-2022-30229 was published Jun 15, 2022

Trivision NC-227WF firmware 5.80 (build 20141010) login mechanism reveals whether a username... Moderate Unreviewed

CVE-2025-56764 was published Sep 29, 2025

Schneider Electric StruxureWare SCADA Expert ClearSCADA 2010 R3 through 2014 R1 allows remote... Moderate Unreviewed

CVE-2014-5412 was published May 14, 2022

The issue was addressed with improved authentication. This issue is fixed in iOS 17.3 and iPadOS... Moderate Unreviewed

CVE-2024-23219 was published Jan 23, 2024

Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit... Moderate Unreviewed

CVE-2020-26558 was published May 24, 2022

The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a... Moderate Unreviewed

CVE-2023-52160 was published Feb 22, 2024

An authentication issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed

CVE-2023-42935 was published Jan 23, 2024

Tenda N300 Wireless N VDSL2 Modem Router allows unauthenticated access to pages that in turn... Moderate Unreviewed

CVE-2023-4498 was published Sep 6, 2023

This issue was addressed through improved state management. This issue is fixed in macOS Sonoma... Moderate Unreviewed

CVE-2024-40794 was published Jul 30, 2024

In preloader, there is a possible escalation of privilege due to an insecure default value. This... Moderate Unreviewed

CVE-2025-20730 was published Nov 4, 2025

An authentication issue was addressed with improved state management. This issue is fixed in iOS... Moderate Unreviewed

CVE-2024-44202 was published Sep 17, 2024

This issue was addressed through improved state management. This issue is fixed in iOS 17.7 and... Moderate Unreviewed

CVE-2024-44127 was published Sep 17, 2024

A logic issue was addressed with improved state management. This issue is fixed in visionOS 2.4,... Moderate Unreviewed

CVE-2025-30432 was published Apr 1, 2025

A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is... Moderate Unreviewed

CVE-2023-40660 was published Nov 6, 2023

The issue was addressed with improved authentication. This issue is fixed in iPadOS 17.7.7, iOS... Moderate Unreviewed

CVE-2025-31228 was published May 13, 2025

A vulnerability was found in libssh, where the authentication check of the connecting client can... Moderate Unreviewed

CVE-2023-2283 was published May 26, 2023

A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the... Moderate Unreviewed

CVE-2021-3979 was published Aug 26, 2022

A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password... Moderate Unreviewed

CVE-2023-4641 was published Dec 27, 2023

A vulnerability was identified in Tomofun Furbo 360 and Furbo Mini. Affected by this issue is... Moderate Unreviewed

CVE-2025-11633 was published Oct 12, 2025

Adobe ColdFusion 9.0, 9.0.1, and 9.0.2, when a password is not configured, allows remote... Moderate Unreviewed

CVE-2013-0625 was published May 17, 2022

Improper authentication in Microsoft Office SharePoint allows an authorized attacker to perform... Moderate Unreviewed

CVE-2025-49706 was published Jul 8, 2025

Previous1…47 Next

Previous 1 2 3 4 5 … 46 47 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,155 advisories