Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,651
Maven
5,000+
npm
4,279
NuGet
760
pip
4,066
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

111 advisories

Loading
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.9 before 18.3.6, 18... Low Unreviewed
CVE-2025-7736 was published Nov 15, 2025
Mattermost versions <11.0 fail to properly enforce the "Allow users to view archived channels"... Low Unreviewed
CVE-2025-41436 was published Nov 14, 2025
This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 1.1,... Low Unreviewed
CVE-2024-23262 was published Mar 8, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17,... Low Unreviewed
CVE-2023-35990 was published Sep 27, 2023
This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and... Low Unreviewed
CVE-2025-30469 was published Apr 1, 2025
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the... Low Unreviewed
CVE-2025-32462 was published Jun 30, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Low Unreviewed
CVE-2025-30703 was published Apr 15, 2025
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3,... Low Unreviewed
CVE-2025-24121 was published Jan 28, 2025
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2024-44172 was published Jan 28, 2025
An authentication issue was addressed with improved state management. This issue is fixed in iOS... Low Unreviewed
CVE-2025-24141 was published Jan 28, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security:... Low Unreviewed
CVE-2025-21546 was published Jan 21, 2025
The ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution plugin for... Low Unreviewed
CVE-2025-11888 was published Oct 25, 2025
Potentially sensitive information in jobs on KNIME Business Hub prior to 1.16.0 were visible to... Low Unreviewed
CVE-2025-11239 was published Oct 2, 2025
A regular Zabbix user can search other users in their user group via Zabbix API by select fields... Low Unreviewed
CVE-2025-27236 was published Oct 3, 2025
The YoSmart YoLink application through 2025-10-02 has session tokens with unexpectedly long... Low Unreviewed
CVE-2025-59451 was published Oct 6, 2025
An authenticated administrator could modify the Created By username for a user account Low Unreviewed
CVE-2025-46744 was published May 12, 2025
rocket.chat Incorrect Authorization Information Disclosure Vulnerability. This vulnerability... Low Unreviewed
CVE-2025-7974 was published Sep 2, 2025
Vulnerability in the Unified Audit component of Oracle Database Server. Supported versions that... Low Unreviewed
CVE-2025-30750 was published Jul 15, 2025
An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1... Low Unreviewed
CVE-2025-6168 was published Jul 10, 2025
An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1... Low Unreviewed
CVE-2025-4972 was published Jul 10, 2025
Incorrect Authorization vulnerability in OpenText™ GroupWise allows Exploiting Incorrectly... Low Unreviewed
CVE-2025-0885 was published Jul 3, 2025
Philips SureSigns VS4, A.07.107 and prior. The software does not restrict or incorrectly... Low Unreviewed
CVE-2020-16241 was published May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions from 18.0 before 18.0.1. In... Low Unreviewed
CVE-2025-1110 was published May 22, 2025
Zoho ManageEngine SupportCenter Plus through 11024 allows low-privileged users to view the... Low Unreviewed
CVE-2022-42903 was published Nov 18, 2022
In registerReceivers of DeviceCapabilityListener.java, there is a possible way to change... Low Unreviewed
CVE-2022-20558 was published Dec 21, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database