Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

539 advisories

Loading
Nagios Log Server versions prior to 2024R1.0.2 contain a local privilege escalation vulnerability... High Unreviewed
CVE-2024-58273 was published Oct 31, 2025
A flaw was found in Red Hat Openshift AI Service. The TrustyAI component is granting all service... Moderate Unreviewed
CVE-2025-12103 was published Oct 28, 2025
IBM QRadar SIEM 7.5 through 7.5.0 Update Pack 13 Independent Fix 02 is vulnerable to privilege... High Unreviewed
CVE-2025-36007 was published Oct 27, 2025
A vulnerability has been found in dulaiduwang003 TIME-SEA-PLUS up to... Moderate Unreviewed
CVE-2025-12304 was published Oct 27, 2025
Incorrect Privilege Assignment vulnerability in bPlugins Voice Feedback voice-feedback allows... High Unreviewed
CVE-2025-62007 was published Oct 22, 2025
Incorrect Privilege Assignment vulnerability in extendons WooCommerce Registration Fields Plugin ... Moderate Unreviewed
CVE-2025-60211 was published Oct 22, 2025
Incorrect Privilege Assignment vulnerability in pebas CouponXxL couponxxl allows Privilege... High Unreviewed
CVE-2025-60220 was published Oct 22, 2025
Incorrect Privilege Assignment vulnerability in FantasticPlugins SUMO Memberships for WooCommerce... Moderate Unreviewed
CVE-2025-60222 was published Oct 22, 2025
Incorrect Privilege Assignment vulnerability in GoodLayers Goodlayers Core goodlayers-core allows... High Unreviewed
CVE-2025-59580 was published Oct 22, 2025
Incorrect Privilege Assignment vulnerability in Dokan, Inc. Dokan dokan-lite allows Privilege... High Unreviewed
CVE-2025-53425 was published Oct 22, 2025
Incorrect Privilege Assignment vulnerability in N-Media Simple User Registration wp-registration... High Unreviewed
CVE-2025-53428 was published Oct 22, 2025
Incorrect Privilege Assignment vulnerability in Josh Kohlbach Wholesale Suite woocommerce... High Unreviewed
CVE-2025-49924 was published Oct 22, 2025
Incorrect Privilege Assignment vulnerability in Progress Planner Progress Planner progress... High Unreviewed
CVE-2025-48082 was published Oct 22, 2025
The Restaurant Brands International (RBI) assistant platform through 2025-09-06 allows a remote... Critical Unreviewed
CVE-2025-62645 was published Oct 17, 2025
A vulnerability was determined in Sismics Teedy up to 1.11. This affects an unknown function of... Moderate Unreviewed
CVE-2025-11853 was published Oct 16, 2025
Potential vulnerabilities have been identified in the audio package for certain HP PC products... High Unreviewed
CVE-2025-10576 was published Oct 15, 2025
Potential vulnerabilities have been identified in the audio package for certain HP PC products... High Unreviewed
CVE-2025-10577 was published Oct 15, 2025
The Binary MLM Plan plugin for WordPress is vulnerable to limited Privilege Escalation in all... Moderate Unreviewed
CVE-2025-10038 was published Oct 15, 2025
A vulnerability was detected in Tomofun Furbo 360 and Furbo Mini. This vulnerability affects... Moderate Unreviewed
CVE-2025-11646 was published Oct 12, 2025
A vulnerability was determined in Tomofun Furbo 360 and Furbo Mini. This impacts an unknown... Low Unreviewed
CVE-2025-11641 was published Oct 12, 2025
A security vulnerability has been detected in Portabilis i-Educar up to 2.9.10. Affected by this... Moderate Unreviewed
CVE-2025-11554 was published Oct 9, 2025
A vulnerability was determined in JhumanJ OpnForm up to 1.9.3. Impacted is an unknown function of... Moderate Unreviewed
CVE-2025-11440 was published Oct 8, 2025
Deno's --deny-write check does not prevent permission bypass Low
CVE-2025-61785 was published for deno (Rust) Oct 7, 2025
dellalibera
Credited to dellalibera
Dell PowerProtect Data Domain BoostFS for Linux Ubuntu systems of Feature Release versions 7.7.1... High Unreviewed
CVE-2025-43914 was published Oct 7, 2025
A vulnerability has been found in Frappe LMS 2.35.0. The affected element is an unknown function... Low Unreviewed
CVE-2025-11281 was published Oct 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database