Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,081
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,570 advisories

Loading
An issue was discovered in file users.json in GroceryMart commit 21934e6 (2020-10-23) allowing... High Unreviewed
CVE-2025-65278 was published Nov 26, 2025
A WebExtension can request access to local files without the warning prompt stating that the... High Unreviewed
CVE-2018-12397 was published May 14, 2022
When Private Browsing mode is used, it is possible for a web worker to write persistent data to... High Unreviewed
CVE-2017-7843 was published May 14, 2022
A mechanism to bypass file system access protections in the sandbox to use the file picker to... High Unreviewed
CVE-2017-5454 was published May 14, 2022
An attacker could use a JavaScript Map/Set timing attack to determine whether an atom is used by... High Unreviewed
CVE-2016-9904 was published May 14, 2022
Hashed codes of JavaScript objects are shared between pages. This allows for pointer leaks... High Unreviewed
CVE-2017-5378 was published May 14, 2022
Same-origin protections for the PDF viewer can be bypassed, allowing a malicious site to... High Unreviewed
CVE-2018-5157 was published May 14, 2022
The OneClick Chat to Order plugin for WordPress is vulnerable to Insecure Direct Object Reference... High Unreviewed
CVE-2025-13526 was published Nov 22, 2025
An issue was discovered in bridgetech probes VB220 IP Network Probe,VB120 Embedded IP + RF Probe,... High Unreviewed
CVE-2025-63205 was published Nov 19, 2025
The ELCA Star Transmitter Remote Control firmware 1.25 for STAR150, BP1000, STAR300, STAR2000,... High Unreviewed
CVE-2025-63209 was published Nov 19, 2025
Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X... High Unreviewed
CVE-2015-0310 was published May 17, 2022
Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store... High Unreviewed
CVE-2025-63891 was published Nov 14, 2025
An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1... High Unreviewed
CVE-2025-54345 was published Nov 14, 2025
An information disclosure vulnerability exists in Ruijie NBR series routers (known to affect... High Unreviewed
CVE-2025-34057 was published Jul 2, 2025
A local code execution security issue exists within Studio 5000® Simulation Interface™ via the... High Unreviewed
CVE-2025-11697 was published Nov 11, 2025
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... High Unreviewed
CVE-2025-43468 was published Nov 4, 2025
The File Manager for Google Drive – Integrate Google Drive with WordPress plugin for WordPress is... High Unreviewed
CVE-2025-12139 was published Nov 5, 2025
An issue was discovered in the camera in Samsung Mobile Processor Exynos 980, 990, 850, 1080,... High Unreviewed
CVE-2025-54323 was published Nov 4, 2025
A race condition was addressed with additional validation. This issue is fixed in macOS Sonoma 14... High Unreviewed
CVE-2024-23235 was published Mar 8, 2024
Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information... High Unreviewed
CVE-2023-41259 was published Nov 3, 2023
An issue was discovered on WyreStorm Apollo VX20 devices before 1.3.58. The TELNET service... High Unreviewed
CVE-2024-25734 was published Mar 27, 2024
Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information Exposure... High Unreviewed
CVE-2023-41260 was published Nov 3, 2023
The issue was addressed with improved handling of caches. This issue is fixed in iOS 26.1 and... High Unreviewed
CVE-2025-43449 was published Nov 4, 2025
This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 26,... High Unreviewed
CVE-2025-43323 was published Nov 4, 2025
A privacy issue was addressed with improved private data redaction for log entries. This issue is... High Unreviewed
CVE-2024-44152 was published Sep 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database