GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,296
Composer 4,813
Erlang 36
GitHub Actions 32
Go 2,396
Maven 5,790
npm 4,037
NuGet 721
pip 3,827
Pub 12
RubyGems 932
Rust 1,001
Swift 38

Unreviewed advisories

All unreviewed 264,047

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

74 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In Sentry 25.1.0 through 25.5.1, an authenticated attacker can access a project's issue endpoint... Moderate Unreviewed

CVE-2025-53073 was published Jun 26, 2025

Direct request ('Forced Browsing') issue exists in iroha Board versions v0.10.12 and earlier. If... Moderate Unreviewed

CVE-2025-41404 was published Jun 26, 2025

Innoshop through 0.4.1 allows Insecure Direct Object Reference (IDOR) at multiple places within... Moderate Unreviewed

CVE-2025-52920 was published Jun 23, 2025

A vulnerability classified as problematic has been found in code-projects Automated Voting System... Moderate Unreviewed

CVE-2025-6352 was published Jun 20, 2025

Ververica Platform 2.14.0 allows low-privileged users to access SQL connectors via a direct... Moderate Unreviewed

CVE-2025-46690 was published Apr 28, 2025

NIH BRICS (aka Biomedical Research Informatics Computing System) through 14.0.0-67 allows users... Moderate Unreviewed

CVE-2025-27581 was published Apr 24, 2025

An unauthenticated remote attacker can bypass the user management in CODESYS Visualization and... Moderate Unreviewed

CVE-2025-2595 was published Apr 23, 2025

A vulnerability was found in Beijing Zhide Intelligent Internet Technology Modern Farm Digital... Moderate Unreviewed

CVE-2025-2147 was published Mar 10, 2025

Grocy through 4.3.0 allows remote attackers to obtain sensitive information via direct requests... Moderate Unreviewed

CVE-2024-55075 was published Jan 6, 2025

A vulnerability classified as problematic has been found in ZKTeco ZKBio Time 9.0.1. Affected is... Moderate Unreviewed

CVE-2024-11049 was published Nov 10, 2024

A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been... Moderate Unreviewed

CVE-2024-7753 was published Aug 14, 2024

An improper authentication vulnerability affecting Vonets industrial wifi bridge relays... Moderate Unreviewed

CVE-2024-42001 was published Aug 12, 2024

A vulnerability classified as problematic has been found in Netgear WN604 up to 20240719.... Moderate Unreviewed

CVE-2024-7153 was published Jul 28, 2024

A vulnerability was found in SourceCodester Insurance Management System 1.0. It has been declared... Moderate Unreviewed

CVE-2024-7080 was published Jul 24, 2024

A vulnerability classified as problematic has been found in Parsec Automation TrakSYS 11.x.x.... Moderate Unreviewed

CVE-2024-6414 was published Jun 30, 2024

A vulnerability was found in Parsec Automation TrackSYS 11.x.x and classified as problematic.... Moderate Unreviewed

CVE-2024-6188 was published Jun 20, 2024

Mautic uses predictable page indices for unpublished landing pages, their content can be accessed... Moderate Unreviewed

CVE-2024-2730 was published Apr 10, 2024

A CWE-862 “Missing Authorization” vulnerability in the “file_configuration” functionality of the... Moderate Unreviewed

CVE-2023-45596 was published Mar 5, 2024

A CWE-862 “Missing Authorization” vulnerability in the “measure” functionality of the web... Moderate Unreviewed

CVE-2023-45598 was published Mar 5, 2024

An issue has been discovered in GitLab EE affecting all versions starting from 16.4 before 16.7.6... Moderate Unreviewed

CVE-2024-0861 was published Feb 22, 2024

IBM Jazz for Service Management 1.1.3.20 could allow an unauthorized user to obtain sensitive... Moderate Unreviewed

CVE-2023-46186 was published Feb 14, 2024

IBM PowerSC 1.3, 2.0, and 2.1 fails to properly restrict access to a URL or resource, which may... Moderate Unreviewed

CVE-2023-50935 was published Feb 2, 2024

An authorization vulnerability exists in GitLab versions 14.0 prior to 16.6.6, 16.7 prior to 16.7... Moderate Unreviewed

CVE-2024-0456 was published Jan 26, 2024

A vulnerability has been identified in SCALANCE XB205-3 (SC, PN) (All versions < V4.5), SCALANCE... Moderate Unreviewed

CVE-2023-44320 was published Nov 14, 2023

A vulnerability was found in GeoServer GeoWebCache up to 1.15.1. It has been declared as... Moderate Unreviewed

CVE-2023-5786 was published Oct 26, 2023

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

74 advisories