GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,792
Erlang
36
GitHub Actions
29
Go
2,377
Maven
5,000+
npm
4,002
NuGet
720
pip
3,802
Pub
12
RubyGems
927
Rust
984
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
878 advisories
Filter by severity
A potential security vulnerability has been identified in the HP Support Assistant, which allows...
Moderate
Unreviewed
CVE-2025-43019
was published
Jul 8, 2025
An issue in NetEase (Hangzhou) Network Co., Ltd NeacSafe64 Driver before v1.0.0.8 allows...
Moderate
Unreviewed
CVE-2025-45737
was published
Jun 27, 2025
A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V3.1),...
Moderate
Unreviewed
CVE-2024-41797
was published
Jun 10, 2025
An Improper Privilege Management vulnerability [CWE-269] affecting Fortinet FortiOS version 7.6.0...
Moderate
Unreviewed
CVE-2025-22254
was published
Jun 10, 2025
The HoYoVerse (formerly miHoYo) Genshin Impact mhyprot2.sys 1.0.0.0 anti-cheat driver does not...
Moderate
Unreviewed
CVE-2020-36603
was published
Sep 15, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
Moderate
Unreviewed
CVE-2022-35775
was published
Aug 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
Moderate
Unreviewed
CVE-2022-35774
was published
Aug 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
Moderate
Unreviewed
CVE-2022-35780
was published
Aug 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
Moderate
Unreviewed
CVE-2022-35782
was published
Aug 10, 2022
Azure Site Recovery Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022...
Moderate
Unreviewed
CVE-2022-35781
was published
Aug 10, 2022
When a notification relating to low battery appears for a user with whom the device has been...
Moderate
Unreviewed
CVE-2025-4975
was published
May 23, 2025
This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.4...
Moderate
Unreviewed
CVE-2022-32781
was published
Sep 25, 2022
This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.4...
Moderate
Unreviewed
CVE-2022-32782
was published
Sep 25, 2022
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.3, macOS...
Moderate
Unreviewed
CVE-2025-24183
was published
May 19, 2025
Aria Operations for Networks contains a local privilege escalation vulnerability. A console user...
Moderate
Unreviewed
CVE-2024-22239
was published
Feb 6, 2024
Improper Privilege Management vulnerability in Centreon web allows Privilege Escalation.
ACL are...
Moderate
Unreviewed
CVE-2025-4649
was published
May 13, 2025
An authenticated user without user-management permissions could view other users' account...
Moderate
Unreviewed
CVE-2025-46745
was published
May 12, 2025
A suspended or recently logged-out user could continue to interact with Blueframe until the time...
Moderate
Unreviewed
CVE-2025-46741
was published
May 12, 2025
In Simple Exam Reviewer Management System v1.0 the User List function has improper access control...
Moderate
Unreviewed
CVE-2022-42197
was published
Oct 20, 2022
An authenticated attacker could read Nessus Debug Log file attachments from the web UI without...
Moderate
Unreviewed
CVE-2022-33757
was published
Oct 25, 2022
A vulnerability in Cisco Nexus Dashboard could allow an authenticated, local attacker with valid...
Moderate
Unreviewed
CVE-2024-20282
was published
Apr 3, 2024
The Automatic User Roles Switcher WordPress plugin before 1.1.2 does not have authorisation and...
Moderate
Unreviewed
CVE-2022-3419
was published
Oct 31, 2022
Insufficient control flow management in the firmware for some Intel(R) Processors may allow a...
Moderate
Unreviewed
CVE-2021-0103
was published
Feb 11, 2022
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable...
Moderate
Unreviewed
CVE-2025-3438
was published
May 2, 2025
There is a Permission Management and Access Control vulnerability in the GoldenDB database...
Moderate
Unreviewed
CVE-2025-46576
was published
Apr 27, 2025
ProTip!
Advisories are also available from the
GraphQL API