Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,831
Erlang
36
GitHub Actions
33
Go
2,451
Maven
5,000+
npm
4,073
NuGet
723
pip
3,868
Pub
12
RubyGems
943
Rust
1,010
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,265 advisories

Loading
A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This... Moderate Unreviewed
CVE-2025-9153 was published Aug 19, 2025
EzGED3 3.5.0 contains an unauthenticated arbitrary file read vulnerability due to improper access... Moderate Unreviewed
CVE-2025-51539 was published Aug 19, 2025
A security issue has been identified in Appian Enterprise Business Process Management version 25... Moderate Unreviewed
CVE-2025-50434 was published Aug 19, 2025
A vulnerability exists in riscv-boom SonicBOOM 1.2 (BOOMv1.2) processor implementation, where... Moderate Unreviewed
CVE-2025-50897 was published Aug 19, 2025
Incorrect Access Control in the AJAX endpoint functionality in jonkastonka Cookies and Content... Moderate Unreviewed
CVE-2025-51529 was published Aug 19, 2025
Thermo Fisher Scientific ePort through 3.0.0 has Incorrect Access Control. High Unreviewed
CVE-2025-32992 was published Aug 18, 2025
An Insecure Direct Object Reference (IDOR) vulnerability was identified in the `POST /v1... High Unreviewed
CVE-2025-4962 was published Aug 18, 2025
A vulnerability was identified in Acrel Environmental Monitoring Cloud Platform up to 20250804.... Moderate Unreviewed
CVE-2025-9099 was published Aug 18, 2025
The Lotus Cars Android app (com.lotus.carsdomestic.intl) 1.2.8 contains an exported component,... Moderate Unreviewed
CVE-2025-50861 was published Aug 14, 2025
A vulnerability in the implementation of access control rules for loopback interfaces in Cisco... Moderate Unreviewed
CVE-2025-20219 was published Aug 14, 2025
A vulnerability has been found in linlinjava litemall up to 1.8.0. This vulnerability affects the... Moderate Unreviewed
CVE-2025-8965 was published Aug 14, 2025
A vulnerability in the web application of the ctrlX OS setup mechanism facilitated an... High Unreviewed
CVE-2025-48860 was published Aug 14, 2025
A vulnerability in the Task API endpoint of the ctrlX OS setup mechanism allowed a remote,... Moderate Unreviewed
CVE-2025-48861 was published Aug 14, 2025
External Secrets Operator's Missing Namespace Restriction Allows Unauthorized Secret Access High
CVE-2025-55196 was published for github.com/external-secrets/external-secrets (Go) Aug 13, 2025
gracedo moolen
A vulnerability was found in INSTAR 2K+ and 4K 3.11.1 Build 1124. This issue affects some unknown... High Unreviewed
CVE-2025-8762 was published Aug 13, 2025
Improper access control in Azure File Sync allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-53729 was published Aug 12, 2025
Improper access control in SQL Server allows an authorized attacker to elevate privileges over a... High Unreviewed
CVE-2025-24999 was published Aug 12, 2025
Improper access control in Azure Virtual Machines allows an authorized attacker to perform... High Unreviewed
CVE-2025-49707 was published Aug 12, 2025
Improper access control for some Edge Orchestrator software before version 24.11.1 for Intel(R)... Low Unreviewed
CVE-2025-24840 was published Aug 12, 2025
Improper access control for some Device Plugins for Kubernetes software maintained by Intel... Moderate Unreviewed
CVE-2025-24313 was published Aug 12, 2025
Improper access control in some firmware package and LED mode toggle tool for some Intel(R) PCIe... High Unreviewed
CVE-2025-24323 was published Aug 12, 2025
Improper access control for some Intel(R) Rapid Storage Technology installation software may... Moderate Unreviewed
CVE-2025-20099 was published Aug 12, 2025
A vulnerability was identified in code-projects eBlog Site 1.0. Affected by this vulnerability is... Moderate Unreviewed
CVE-2025-8859 was published Aug 11, 2025
A vulnerability was identified in zlt2000 microservices-platform up to 6.0.0. Affected by this... Moderate Unreviewed
CVE-2025-8841 was published Aug 11, 2025
A vulnerability was found in oitcode samarium up to 0.9.6. It has been classified as critical.... Moderate Unreviewed
CVE-2025-8798 was published Aug 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database