Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

822 advisories

Loading
StreamLabs Desktop Application 1.9.0 is vulnerable to Incorrect Access Control via obs64.exe. An... High Unreviewed
CVE-2022-36263 was published Aug 20, 2022
Autel MaxiCharger AC Wallbox Commercial Technician API Incorrect Authorization Privilege... High Unreviewed
CVE-2025-5822 was published Jun 26, 2025
Successful exploitation of the vulnerability could allow an unauthenticated, remote attacker to... High Unreviewed
CVE-2025-48466 was published Jun 26, 2025
The AI Engine plugin for WordPress is vulnerable to unauthorized modification of data and loss of... High Unreviewed
CVE-2025-5071 was published Jun 19, 2025
Authorization vulnerability in the BootLoader module. Successful exploitation of this... High Unreviewed
CVE-2023-52111 was published Jan 16, 2024
The ws.stash.app.mac.daemon.helper tool contains a vulnerability caused by an incorrect use of... High Unreviewed
CVE-2024-7457 was published Jun 11, 2025
In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an unauthenticated user with... High Unreviewed
CVE-2023-51761 was published Feb 9, 2024
A vulnerability has been identified in RUGGEDCOM RST2428P (6GK6242-6PA00) (All versions < V3.2),... High Unreviewed
CVE-2025-40567 was published Jun 10, 2025
Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an attacker,... High Unreviewed
CVE-2025-40668 was published Jun 9, 2025
Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an... High Unreviewed
CVE-2025-40670 was published Jun 9, 2025
Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an... High Unreviewed
CVE-2025-40669 was published Jun 9, 2025
Memory corruption due to unauthorized command execution in GPU micronode while executing specific... High Unreviewed
CVE-2025-21479 was published Jun 3, 2025
Memory corruption due to unauthorized command execution in GPU micronode while executing specific... High Unreviewed
CVE-2025-21480 was published Jun 3, 2025
In Eigen NLP 3.10.1, a lack of access control on the /auth/v1/user/ user creation endpoint allows... High Unreviewed
CVE-2021-38617 was published May 24, 2022
In Eigen NLP 3.10.1, a lack of access control on the /auth/v1/user/{user-guid}/ user edition... High Unreviewed
CVE-2021-38616 was published May 24, 2022
In Eigen NLP 3.10.1, a lack of access control on the /auth/v1/sso/config/ SSO configuration... High Unreviewed
CVE-2021-38615 was published May 24, 2022
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6... High Unreviewed
CVE-2020-28405 was published May 24, 2022
An improper authorization vulnerability exists in Star Practice Management Web version 2019.2.0.6... High Unreviewed
CVE-2020-28402 was published May 24, 2022
An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It possesses... High Unreviewed
CVE-2022-34908 was published Feb 27, 2023
Insecure Permissions vulnerability in BossCMS v.1.3.0 allows a local attacker to execute... High Unreviewed
CVE-2024-22938 was published Jan 30, 2024
Unauthorized access vulnerability in the card management module. Successful exploitation of this... High Unreviewed
CVE-2023-49246 was published Dec 6, 2023
An Incorrect Authorization vulnerability [CWE-863] in FortiClient Mac 7.4.0 through 7.4.2, 7.2.0... High Unreviewed
CVE-2025-25251 was published May 28, 2025
Device commissioning parameters in ASPECT may be modified by an external source if administrative... High Unreviewed
CVE-2024-13947 was published May 22, 2025
System File Deletion vulnerabilities in ASPECT provide attackers access to delete system files if... High Unreviewed
CVE-2025-30171 was published May 22, 2025
Insufficient validation of untrusted input in V8 in Google Chrome prior to 105.0.5195.52 allowed... High Unreviewed
CVE-2022-3045 was published Sep 27, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database