GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,320
Composer 4,926
Erlang 39
GitHub Actions 38
Go 2,576
Maven 6,042
npm 4,246
NuGet 754
pip 4,008
Pub 12
RubyGems 953
Rust 1,045
Swift 45

Unreviewed advisories

All unreviewed 274,150

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,295 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The SystemUI module has a privilege escalation vulnerability. Successful exploitation of this... Critical Unreviewed

CVE-2022-37002 was published Aug 11, 2022

The Restaurant Brands International (RBI) assistant platform through 2025-09-06 provides the... Moderate Unreviewed

CVE-2025-62647 was published Oct 17, 2025

The Restaurant Brands International (RBI) assistant platform through 2025-09-06 allows remote... Moderate Unreviewed

CVE-2025-62648 was published Oct 17, 2025

The Restaurant Brands International (RBI) assistant platform through 2025-09-06 does not... Moderate Unreviewed

CVE-2025-62651 was published Oct 17, 2025

An Incorrect Authorization vulnerability has been identified in Moxa’s network security... High Unreviewed

CVE-2025-6892 was published Oct 17, 2025

Adobe Experience Manager versions 6.5.23 and earlier are affected by a Misconfiguration... Critical Unreviewed

CVE-2025-54253 was published Aug 5, 2025

Due to an insufficient access control implementation in multiple WSO2 Products, authentication... Critical Unreviewed

CVE-2025-10611 was published Oct 16, 2025

An improper access control vulnerability exists in WSO2 Enterprise Integrator product due to... Moderate Unreviewed

CVE-2025-9955 was published Oct 16, 2025

Incorrect Authorization vulnerability in the protocol communication between the WatchGuard... Critical Unreviewed

CVE-2024-6592 was published Sep 25, 2024

In lunary-ai/lunary before version 1.4.30, a privilege escalation vulnerability exists where... High Unreviewed

CVE-2024-9098 was published Mar 20, 2025

In lunary-ai/lunary v1.5.0, improper privilege management in the models.ts file allows users with... Moderate Unreviewed

CVE-2024-10273 was published Mar 20, 2025

In version 1.5.5 of lunary-ai/lunary, a vulnerability exists where admins, who do not have direct... High Unreviewed

CVE-2024-10275 was published Mar 20, 2025

In lunary-ai/lunary version 1.2.4, an improper access control vulnerability allows members with... High Unreviewed

CVE-2024-5714 was published Jun 27, 2024

In version 1.2.7 of lunary-ai/lunary, any authenticated user, regardless of their role, can... Moderate Unreviewed

CVE-2024-6086 was published Jun 27, 2024

In gaizhenbiao/chuanhuchatgpt, specifically the version tagged as 20240121, there exists a... Moderate Unreviewed

CVE-2024-3404 was published Jun 6, 2024

In version v0.3.8 of open-webui, an improper privilege management vulnerability exists in the API... Moderate Unreviewed

CVE-2024-7048 was published Oct 10, 2024

An Incorrect Authorization vulnerability exists in lunary-ai/lunary versions up to and including... High Unreviewed

CVE-2024-5130 was published Jun 6, 2024

An improper access control vulnerability exists in lunary-ai/lunary versions up to and including... High Unreviewed

CVE-2024-3504 was published Jun 6, 2024

Bookgy does not provide for proper authorisation control in multiple areas of the application.... Critical Unreviewed

CVE-2025-40619 was published Apr 29, 2025

Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and... Moderate Unreviewed

CVE-2025-54277 was published Oct 14, 2025

SAP S/4HANA (Manage Processing Rules - For Bank Statements) allows an authenticated attacker with... Moderate Unreviewed

CVE-2025-42939 was published Oct 14, 2025

The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to authorization... Moderate Unreviewed

CVE-2025-7374 was published Oct 10, 2025

GitLab has remediated an issue in GitLab EE affecting all versions from 18.3 to 18.3.4, 18.4 to... High Unreviewed

CVE-2025-11340 was published Oct 9, 2025

Potentially sensitive information in jobs on KNIME Business Hub prior to 1.16.0 were visible to... Low Unreviewed

CVE-2025-11239 was published Oct 2, 2025

A regular Zabbix user with no permission to the Monitoring -> Problems view is still able to call... Moderate Unreviewed

CVE-2025-49641 was published Oct 3, 2025

Previous1…92 Next

Previous 1 2 3 4 5 … 91 92 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,295 advisories