Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,792
Erlang
36
GitHub Actions
29
Go
2,377
Maven
5,000+
npm
4,002
NuGet
720
pip
3,802
Pub
12
RubyGems
927
Rust
984
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

18 advisories

Loading
A missing double-check feature in the WebGUI for CLI deactivation in Infinera G42 version R6.1.3... Moderate Unreviewed
CVE-2025-27026 was published Jul 2, 2025
An issue has been discovered in GitLab CE/EE affecting all versions before 17.10.7, 17.11 before... Moderate Unreviewed
CVE-2025-4979 was published May 22, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 12.0 before 17.9.8, 17... Moderate Unreviewed
CVE-2025-1278 was published May 9, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 13.12 before 17.8.7, 17... Moderate Unreviewed
CVE-2025-2408 was published Apr 10, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 16.0 before 17.8.6, 17.9... Moderate Unreviewed
CVE-2024-12619 was published Mar 28, 2025
The product implements access controls via a policy or other feature with the intention to... Moderate Unreviewed
CVE-2024-6696 was published Feb 20, 2025
Insufficient granularity of access control in UEFI firmware in some Intel(R) processors may allow... Moderate Unreviewed
CVE-2024-39279 was published Feb 13, 2025
An issue has been discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to... Moderate Unreviewed
CVE-2024-11931 was published Jan 24, 2025
Insufficient Granularity of Access Control vulnerability in Drupal Paragraphs table allows... Moderate Unreviewed
CVE-2024-13272 was published Jan 9, 2025
A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test... Moderate Unreviewed
CVE-2023-39418 was published Aug 11, 2023
The disabling function of the user registration page for Heimavista Rpage and Epage is not... Moderate Unreviewed
CVE-2024-2412 was published Mar 13, 2024
Outlook for Android Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2024-43604 was published Oct 8, 2024
An access-control flaw was found in the OpenStack Designate component where private configuration... Moderate Unreviewed
CVE-2023-6725 was published Mar 15, 2024
IBM Spectrum Fusion HCI 2.5.2 through 2.7.2 could allow an attacker to perform unauthorized... Moderate Unreviewed
CVE-2023-43040 was published May 14, 2024
A flaw was found in openshift-logging LokiStack. The key used for caching is just the token,... Moderate Unreviewed
CVE-2023-4456 was published Aug 21, 2023
Insufficient Granularity of Access Control vulnerability in OpenText™ Service Management... Moderate Unreviewed
CVE-2023-32259 was published Mar 19, 2024
Insufficient Granularity of Access Control in GitHub repository fossbilling/fossbilling prior to... Moderate Unreviewed
CVE-2023-3227 was published Jun 14, 2023
Accounting User Can Download Patient Reports in openemr in GitHub repository openemr/openemr... Moderate Unreviewed
CVE-2022-1177 was published Mar 31, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database