Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,950
Erlang
39
GitHub Actions
38
Go
2,603
Maven
5,000+
npm
4,250
NuGet
755
pip
4,013
Pub
12
RubyGems
953
Rust
1,048
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,350 advisories

Loading
Captive Portal can allow authentication bypass High Unreviewed
CVE-2025-6979 was published Oct 23, 2025
Encrypted WiFi and SSH credentials were found in the Ghost Robotics Vision 60 v0.27.2 APK. This... High Unreviewed
CVE-2025-41110 was published Oct 22, 2025
ScreenConnect versions 25.2.3 and earlier versions may be susceptible to a ViewState code... High Unreviewed
CVE-2025-3935 was published Apr 25, 2025
An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti... High Unreviewed
CVE-2023-46805 was published Jan 12, 2024
Open Management Infrastructure Elevation of Privilege Vulnerability This CVE ID is unique from... High Unreviewed
CVE-2021-38648 was published May 24, 2022
Windows Task Scheduler Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-49039 was published Nov 12, 2024
SAP NetWeaver AS JAVA (LM Configuration Wizard), versions - 7.30, 7.31, 7.40, 7.50, does not... High Unreviewed
CVE-2020-6287 was published May 24, 2022
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.1, watchOS... High Unreviewed
CVE-2022-48618 was published Jan 9, 2024
An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9 and... High Unreviewed
CVE-2020-12812 was published May 24, 2022
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote attacker... High Unreviewed
CVE-2020-4427 was published May 24, 2022
Unraid 6.8.0 allows authentication bypass. High Unreviewed
CVE-2020-5849 was published May 24, 2022
Unraid through 6.8.0 allows Remote Code Execution. High Unreviewed
CVE-2020-5847 was published May 24, 2022
A remote code execution vulnerability exists in Microsoft Exchange software when the software... High Unreviewed
CVE-2020-0688 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows improperly handles authentication... High Unreviewed
CVE-2019-0543 was published May 13, 2022
Microsoft Exchange Information Disclosure Vulnerability High Unreviewed
CVE-2021-33766 was published May 24, 2022
Juniper ScreenOS 6.2.0r15 through 6.2.0r18, 6.3.0r12 before 6.3.0r12b, 6.3.0r13 before 6.3.0r13b,... High Unreviewed
CVE-2015-7755 was published May 17, 2022
An issue was discovered in Veritas Backup Exec before 21.2. The communication between a client... High Unreviewed
CVE-2021-27878 was published May 24, 2022
An issue was discovered in Veritas Backup Exec before 21.2. The communication between a client... High Unreviewed
CVE-2021-27876 was published May 24, 2022
SMB Server might be susceptible to relay attacks depending on the configuration. An attacker who... High Unreviewed
CVE-2025-55234 was published Sep 9, 2025
Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over... High Unreviewed
CVE-2025-53778 was published Aug 12, 2025
The issue was addressed with improved authentication. This issue is fixed in macOS Sequoia 15.6.... High Unreviewed
CVE-2025-43281 was published Oct 15, 2025
The Keyy Two Factor Authentication (like Clef) plugin for WordPress is vulnerable to privilege... High Unreviewed
CVE-2025-10293 was published Oct 15, 2025
Improper authentication in Windows Remote Desktop Protocol allows an authorized attacker to... High Unreviewed
CVE-2025-55340 was published Oct 14, 2025
Because of unauthenticated password changes in ForLogic Qualiex v1 and v3, customer and admin... High Unreviewed
CVE-2020-24029 was published May 24, 2022
An authentication bypass security issue exists within FactoryTalk View Machine Edition Web... High Unreviewed
CVE-2025-9063 was published Oct 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database