GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,759
Composer 5,034
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,120
npm 4,300
NuGet 760
pip 4,078
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,166

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

138 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability exists in Sitecore Experience Manager (XM), Experience Platform (XP), Experience... High Unreviewed

CVE-2025-34139 was published Jul 25, 2025

JavaScript pre-processing can be used by the attacker to gain access to the file system (read... High Unreviewed

CVE-2023-29450 was published Jul 13, 2023

A vulnerability has been identified in Omnivise T3000 Application Server (All versions >= R9.2),... High Unreviewed

CVE-2024-38876 was published Aug 2, 2024

Roundcube Webmail before 1.1.10, 1.2.x before 1.2.7, and 1.3.x before 1.3.3 allows unauthorized... High Unreviewed

CVE-2017-16651 was published May 13, 2022

An arbitrary file download vulnerability in the web interface of Juniper Networks Junos Space... High Unreviewed

CVE-2025-59976 was published Oct 9, 2025

Elevation of Privileges in the cleaning feature of Gen Digital CCleaner version 6.33.11465 on... High Unreviewed

CVE-2025-3025 was published Sep 15, 2025

Files or Directories Accessible to External Parties vulnerability in Honeywell PM43 on 32 bit,... High Unreviewed

CVE-2023-3712 was published Sep 12, 2023

An unauthenticated remote attacker can read out sensitive device information through a... High Unreviewed

CVE-2024-6421 was published Jul 10, 2024

ContentKeeper Web Appliance (now maintained by Impero Software) versions prior to 125.10 expose... High Unreviewed

CVE-2009-10005 was published Aug 20, 2025

Multiple Brother driver installers for Windows contain a privilege escalation vulnerability. If... High Unreviewed

CVE-2025-49797 was published Jun 26, 2025

NVIDIA Installer for Windows contains a vulnerability where an attacker may be able to escalate... High Unreviewed

CVE-2025-23276 was published Aug 3, 2025

OA EKP v16 was discovered to contain an arbitrary download vulnerability via the component /ui... High Unreviewed

CVE-2023-41566 was published Jul 17, 2025

A local file inclusion vulnerability on the Trend Micro Apex One management server could allow a... High Unreviewed

CVE-2023-47202 was published Jan 23, 2024

Lack of file validation in do_update_vps in Avast Business Antivirus for Linux 4.5 on Linux... High Unreviewed

CVE-2025-4134 was published May 28, 2025

An arbitrary file read vulnerability in the ReadTextAsynchronous function of SSCMS v7.3.1 allows... High Unreviewed

CVE-2025-45529 was published May 27, 2025

In the affected version of the 1E Client, an ordinary user could subvert downloaded instruction... High Unreviewed

CVE-2023-45160 was published Oct 5, 2023

Insecure access control in ZKTeco BioTime v8.5.5 allows unauthenticated attackers to read... High Unreviewed

CVE-2023-38952 was published Aug 4, 2023

A vulnerability was discovered in Pagure server. If a malicious user were to submit a git... High Unreviewed

CVE-2024-4981 was published May 12, 2025

A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges to... High Unreviewed

CVE-2025-32819 was published May 7, 2025

The web portal of Dragino Lora LG01 18ed40 IoT v4.3.4 has the directory listing at the URL https:... High Unreviewed

CVE-2022-45227 was published Dec 12, 2022

Files or directories accessible to external parties vulnerability in picasa.php in Synology Photo... High Unreviewed

CVE-2017-12079 was published May 13, 2022

Local File Inclusion vulnerability in Ready's attachment upload panel allows low privileged user... High Unreviewed

CVE-2025-1982 was published Apr 16, 2025

CWE-552: Files or Directories Accessible to External Parties vulnerability over https exists that... High Unreviewed

CVE-2025-2222 was published Apr 9, 2025

The ReadFile endpoint of the firmware for Mennekes Smart / Premium Chargingpoints can be abused... High Unreviewed

CVE-2025-22369 was published Mar 11, 2025

A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed

CVE-2025-25266 was published Mar 11, 2025

Previous1…6 Next

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

138 advisories