Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,714
Erlang
34
GitHub Actions
28
Go
2,301
Maven
5,000+
npm
3,942
NuGet
711
pip
3,711
Pub
12
RubyGems
920
Rust
960
Swift
38
Unreviewed advisories
All unreviewed
5,000+

341 advisories

Loading
A Broken Access Control vulnerability in StrangeBee TheHive 5.2.0 before 5.2.16, 5.3.0 before 5.3... Moderate Unreviewed
CVE-2025-48741 was published May 23, 2025
Incorrect Privilege Assignment vulnerability in Themewinter Eventin allows Privilege Escalation.... Critical Unreviewed
CVE-2025-47539 was published May 23, 2025
Incorrect Privilege Assignment vulnerability in mojoomla Hospital Management System allows... High Unreviewed
CVE-2025-47631 was published May 23, 2025
Incorrect Privilege Assignment vulnerability in pebas CouponXL allows Privilege Escalation. This... Critical Unreviewed
CVE-2025-39489 was published May 23, 2025
Incorrect Privilege Assignment vulnerability in quantumcloud Simple Business Directory Pro allows... Critical Unreviewed
CVE-2025-31918 was published May 23, 2025
An issue was discovered in CyberDAVA before 1.1.20. A privilege escalation vulnerability allows a... Moderate Unreviewed
CVE-2025-48695 was published May 23, 2025
Actors can use a maliciously crafted JavaScript object notation (JSON) web token (JWT) to perform... Moderate Unreviewed
CVE-2025-4692 was published May 23, 2025
containerd CRI plugin: Incorrect cgroup hierarchy assignment for containers running in usernamespaced Kubernetes pods. Moderate
CVE-2025-47291 was published for github.com/containerd/containerd/v2 (Go) May 21, 2025
rata rogowski-piotr
Incorrect Privilege Assignment vulnerability in Rocket Apps wProject.This issue affects wProject:... High Unreviewed
CVE-2025-39366 was published May 19, 2025
Incorrect Privilege Assignment vulnerability in Contempo Themes Real Estate 7 allows Privilege... High Unreviewed
CVE-2025-39459 was published May 19, 2025
Incorrect Privilege Assignment vulnerability in mojoomla WPAMS allows Privilege Escalation.This... High Unreviewed
CVE-2025-39405 was published May 19, 2025
A vulnerability classified as problematic has been found in y_project RuoYi 4.8.0. Affected is an... Low Unreviewed
CVE-2025-4819 was published May 17, 2025
An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on... Moderate Unreviewed
CVE-2025-0135 was published May 14, 2025
An incorrect privilege management vulnerability in the OPSWAT MetaDefender Endpoint Security SDK... High Unreviewed
CVE-2025-0131 was published May 14, 2025
Nomad Enterprise (“Nomad”) jobs using the policy override option are bypassing the mandatory... High Unreviewed
CVE-2025-3744 was published May 13, 2025
A vulnerability has been identified in Mendix OIDC SSO (Mendix 10 compatible) (All versions < V4... Low Unreviewed
CVE-2025-40571 was published May 13, 2025
A flaw was found in Quay. When an organization acts as a proxy cache, and a user or robot pulls... Moderate Unreviewed
CVE-2025-4374 was published May 6, 2025
IBM Maximo Application Suite 9.0 could allow an attacker with some level of access to elevate... High Unreviewed
CVE-2025-2898 was published May 6, 2025
A vulnerability was found in TOTOLINK A720R 4.1.5cu.374 and classified as critical. This issue... Moderate Unreviewed
CVE-2025-4269 was published May 5, 2025
Incorrect privilege assignment in PAM JIT elevation feature in Devolutions Server 2025.1.5.0 and... Moderate Unreviewed
CVE-2025-3517 was published May 2, 2025
Incorrect Privilege Assignment vulnerability in Brainstorm Force SureTriggers allows Privilege... Critical Unreviewed
CVE-2025-27007 was published May 1, 2025
A vulnerability was found in Weitong Mall 1.0.0. It has been classified as critical. This affects... Moderate Unreviewed
CVE-2025-4136 was published Apr 30, 2025
A vulnerability classified as critical has been found in Weitong Mall 1.0.0. This affects an... Moderate Unreviewed
CVE-2025-4118 was published Apr 30, 2025
A vulnerability classified as critical was found in Weitong Mall 1.0.0. This vulnerability... Moderate Unreviewed
CVE-2025-4119 was published Apr 30, 2025
A vulnerability classified as critical has been found in ScriptAndTools Online-Travling-System 1... Moderate Unreviewed
CVE-2025-4067 was published Apr 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database