GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,176
Composer 4,340
Erlang 31
GitHub Actions 22
Go 2,100
Maven 5,278
npm 3,764
NuGet 678
pip 3,448
Pub 12
RubyGems 892
Rust 883
Swift 37

Unreviewed advisories

All unreviewed 242,897

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

749 advisories

Filter by severity

Sort by

Least recently updated

Milesight NCR/camera version 71.8.0.6-r5 discloses sensitive information through an unspecified... High Unreviewed

CVE-2023-24505 was published May 8, 2023

A permissions issue was addressed with improved validation. This issue is fixed in macOS Big Sur... High Unreviewed

CVE-2021-30713 was published May 24, 2022

Insecure Permissons vulnerability found in Shop_CMS YerShop all versions allows a remote attacker... High Unreviewed

CVE-2020-23362 was published May 9, 2023

Zohocorp ManageEngine Applications Manager versions 174000 and prior are vulnerable to the... High Unreviewed

CVE-2024-41140 was published Jan 29, 2025

A Local Code Execution Vulnerability exists in the product and version listed above. The... High Unreviewed

CVE-2025-24479 was published Jan 28, 2025

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma... High Unreviewed

CVE-2024-54537 was published Jan 28, 2025

An attacker can bypass the sandboxing of Nasal scripts and arbitrarily write to any file path... High Unreviewed

CVE-2025-0781 was published Jan 28, 2025

A maliciously crafted MODEL file, when parsed in ASMkern229A.dllthrough Autodesk applications,... High Unreviewed

CVE-2024-37002 was published Jun 25, 2024

An authentication issue was addressed with improved state management. This issue is fixed in... High Unreviewed

CVE-2024-54542 was published Jan 28, 2025

The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the... High Unreviewed

CVE-2010-2965 was published May 17, 2022

VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious... High Unreviewed

CVE-2023-20877 was published May 12, 2023

https://www.gnu.org/software/binutils/ nm >=2.43 is affected by: Incorrect Access Control. The... High Unreviewed

CVE-2024-57360 was published Jan 21, 2025

In Thermo Fisher Scientific Xcalibur before 4.7 SP1 and Thermo Foundation Instrument Control... High Unreviewed

CVE-2024-55957 was published Jan 22, 2025

Vulnerability in the Oracle Customer Care product of Oracle E-Business Suite (component: Service... High Unreviewed

CVE-2025-21516 was published Jan 21, 2025

Vulnerability in the Oracle Project Foundation product of Oracle E-Business Suite (component:... High Unreviewed

CVE-2025-21506 was published Jan 21, 2025

In setActualDefaultRingtoneUri of RingtoneManager.java, there is a possible way to bypass content... High Unreviewed

CVE-2023-40132 was published Jan 22, 2025

Vulnerability in the Oracle Analytics Desktop product of Oracle Analytics (component: Install). ... High Unreviewed

CVE-2025-21532 was published Jan 21, 2025

AList 3.15.1 is vulnerable to Incorrect Access Control, which can be exploited by attackers to... High Unreviewed

CVE-2023-31726 was published May 24, 2023

The permission system implemented and enforced by the GarminOS TVM component in CIQ API version 1... High Unreviewed

CVE-2023-23299 was published May 23, 2023

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.5,... High Unreviewed

CVE-2024-40771 was published Jan 15, 2025

Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful... High Unreviewed

CVE-2024-13291 was published Jan 9, 2025

Incorrect Authorization vulnerability in Drupal Block permissions allows Forceful Browsing.This... High Unreviewed

CVE-2024-13282 was published Jan 9, 2025

Permission prompts for opening external schemes were only shown for <code>ContentPrincipals</code... High Unreviewed

CVE-2023-25729 was published Jun 2, 2023

An Insecure Direct Object Reference (IDOR) vulnerability exists in the lunary-ai/lunary... High Unreviewed

CVE-2024-1625 was published Apr 10, 2024

The grc-policy-propagator allows security escalation within the cluster. The propagator allows... High Unreviewed

CVE-2023-3027 was published Jun 6, 2023

Previous 1 2 3 4 5 … 29 30 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

749 advisories