GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,776
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,124
npm 4,308
NuGet 760
pip 4,081
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,310

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

63 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Real Estate 7 WordPress theme for WordPress is vulnerable to Privilege Escalation in all... Critical Unreviewed

CVE-2024-13421 was published Feb 12, 2025

The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions... Critical Unreviewed

CVE-2024-12213 was published Feb 12, 2025

Incorrect Privilege Assignment vulnerability in NotFound K Elements allows Privilege Escalation.... Critical Unreviewed

CVE-2024-56000 was published Feb 18, 2025

The DHVC Form plugin for WordPress is vulnerable to privilege escalation in all versions up to,... Critical Unreviewed

CVE-2024-8420 was published Feb 28, 2025

A vulnerability, which was classified as very critical, was found in IROAD Dash Cam X5 and Dash... Critical Unreviewed

CVE-2025-2345 was published Mar 16, 2025

SnapCenter versions prior to 6.0.1P1 and 6.1P1 are susceptible to a vulnerability which may... Critical Unreviewed

CVE-2025-26512 was published Mar 25, 2025

The WebDAV service in Infinera TNMS (Transcend Network Management System) 19.10.3 allows a low... Critical Unreviewed

CVE-2024-25660 was published Oct 1, 2024

Incorrect Privilege Assignment vulnerability in Favethemes Homey allows Privilege Escalation.This... Critical Unreviewed

CVE-2024-51800 was published Apr 4, 2025

Incorrect Privilege Assignment vulnerability in Mestres do WP Checkout Mestres WP allows... Critical Unreviewed

CVE-2025-32695 was published Apr 9, 2025

Incorrect Privilege Assignment vulnerability in Rankology Rankology SEO – On-site SEO... Critical Unreviewed

CVE-2025-32491 was published Apr 11, 2025

Rancher: Restricted Administrator can change Administrator's passwords Critical

CVE-2025-23391 was published for github.com/rancher/rancher (Go) Apr 1, 2025

Credited to XavierDuthil

Incorrect Privilege Assignment vulnerability in Projectopia Projectopia allows Privilege... Critical Unreviewed

CVE-2025-32648 was published Apr 17, 2025

The Service Finder Bookings plugin for WordPress, used by the Service Finder - Directory and Job... Critical Unreviewed

CVE-2025-2470 was published Apr 25, 2025

NETSCOUT nGeniusONE before 6.4.0 b2350 has a Weak Sudo Configuration. Critical Unreviewed

CVE-2025-32980 was published Apr 25, 2025

Incorrect Privilege Assignment vulnerability in Brainstorm Force SureTriggers allows Privilege... Critical Unreviewed

CVE-2025-27007 was published May 1, 2025

Incorrect Privilege Assignment vulnerability in quantumcloud Simple Business Directory Pro allows... Critical Unreviewed

CVE-2025-31918 was published May 23, 2025

Incorrect Privilege Assignment vulnerability in pebas CouponXL allows Privilege Escalation. This... Critical Unreviewed

CVE-2025-39489 was published May 23, 2025

Incorrect Privilege Assignment vulnerability in Themewinter Eventin allows Privilege Escalation.... Critical Unreviewed

CVE-2025-47539 was published May 23, 2025

Incorrect Privilege Assignment vulnerability in Holest Engineering Spreadsheet Price Changer for... Critical Unreviewed

CVE-2025-48129 was published Jun 9, 2025

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed... Critical Unreviewed

CVE-2024-28000 was published Aug 21, 2024

Improper mstatus.SUM bit retention (non-zero) in Open-Source RISC-V Processor commit f517abb... Critical Unreviewed

CVE-2025-45006 was published Jul 1, 2025

Incorrect Privilege Assignment vulnerability in aonetheme Service Finder Booking allows Privilege... Critical Unreviewed

CVE-2025-23970 was published Jul 4, 2025

Incorrect Privilege Assignment vulnerability in InspiryThemes RealHomes allows Privilege... Critical Unreviewed

CVE-2025-49867 was published Jul 4, 2025

Incorrect Privilege Assignment vulnerability in Unity Business Technology Pty Ltd The E-Commerce... Critical Unreviewed

CVE-2025-52836 was published Jul 16, 2025

In TOTOLink A7100RU V7.4, A950RG V5.9, and T10 V5.9, the chroot_local_user option is enabled in... Critical Unreviewed

CVE-2025-44655 was published Jul 21, 2025

Previous 123 Next

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

63 advisories