Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,679
Erlang
34
GitHub Actions
26
Go
2,268
Maven
5,000+
npm
3,923
NuGet
705
pip
3,686
Pub
12
RubyGems
916
Rust
944
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,319 advisories

Loading
Lack of access controls in the 'ate' management binary of the Tenda RX2 Pro 16.03.30.14 allows an... Moderate Unreviewed
CVE-2025-46629 was published May 2, 2025
Improper access control of endpoint in HCL Domino Leap allows certain admin users to import... Moderate Unreviewed
CVE-2024-30146 was published May 1, 2025
OpenFGA Authorization Bypass Moderate
CVE-2025-46331 was published for github.com/openfga/openfga (Go) Apr 30, 2025
avinashs433
A vulnerability classified as critical has been found in youyiio BeyongCms 1.6.0. Affected is an... Moderate Unreviewed
CVE-2025-4006 was published Apr 28, 2025
A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been rated... Moderate Unreviewed
CVE-2025-3969 was published Apr 27, 2025
Improper access control of endpoint in HCL Leap allows certain admin users to import applications... Moderate Unreviewed
CVE-2024-30148 was published Apr 24, 2025
It technically possible for a user to upload a file to a conversation despite the file upload... Moderate Unreviewed
CVE-2025-3518 was published Apr 22, 2025
mojoPortal <=2.9.0.1 is vulnerable to Directory Traversal via BetterImageGallery API Controller -... Moderate Unreviewed
CVE-2025-28367 was published Apr 21, 2025
A vulnerability was found in kuangstudy KuangSimpleBBS 1.0. It has been declared as critical.... Moderate Unreviewed
CVE-2025-3830 was published Apr 20, 2025
A vulnerability, which was classified as critical, was found in zhenfeng13 My-BBS 1.0. This... Moderate Unreviewed
CVE-2025-3807 was published Apr 19, 2025
A vulnerability, which was classified as critical, has been found in WCMS 11. This issue affects... Moderate Unreviewed
CVE-2025-3798 was published Apr 19, 2025
A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product... Moderate Unreviewed
CVE-2025-3783 was published Apr 18, 2025
A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product... Moderate Unreviewed
CVE-2025-3764 was published Apr 17, 2025
A vulnerability, which was classified as critical, has been found in SourceCodester Web-based... Moderate Unreviewed
CVE-2025-3765 was published Apr 17, 2025
An issue in LRQA Nettitude PoshC2 after commit 09ee2cf allows unauthenticated attackers to... Moderate Unreviewed
CVE-2024-53304 was published Apr 16, 2025
Dell Alienware Command Center 6.x, versions prior to 6.7.37.0 contain an Improper Access Control... Moderate Unreviewed
CVE-2025-30100 was published Apr 16, 2025
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite ... Moderate Unreviewed
CVE-2025-30732 was published Apr 15, 2025
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... Moderate Unreviewed
CVE-2025-30740 was published Apr 15, 2025
Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite ... Moderate Unreviewed
CVE-2025-30726 was published Apr 15, 2025
Vulnerability in the Oracle Communications Order and Service Management product of Oracle... Moderate Unreviewed
CVE-2025-30729 was published Apr 15, 2025
Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: NDBCluster Plugin... Moderate Unreviewed
CVE-2025-30710 was published Apr 15, 2025
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component:... Moderate Unreviewed
CVE-2025-30711 was published Apr 15, 2025
Vulnerability in the PeopleSoft Enterprise HCM Talent Acquisition Manager product of Oracle... Moderate Unreviewed
CVE-2025-30713 was published Apr 15, 2025
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... Moderate Unreviewed
CVE-2025-30709 was published Apr 15, 2025
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). ... Moderate Unreviewed
CVE-2025-30714 was published Apr 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database