GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,096
Composer 5,483
Erlang 47
GitHub Actions 48
Go 3,377
Maven 6,352
npm 5,447
NuGet 881
pip 4,573
Pub 13
RubyGems 1,013
Rust 1,205
Swift 51

Unreviewed advisories

All unreviewed 295,762

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

575 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An authorization issue was addressed with improved state management. This issue is fixed in macOS... Moderate Unreviewed

CVE-2026-20666 was published Feb 12, 2026

An authorization issue was addressed with improved state management. This issue is fixed in iOS... Moderate Unreviewed

CVE-2026-20661 was published Feb 12, 2026

A logic issue was addressed with improved validation. This issue is fixed in iOS 18.7.5 and... Low Unreviewed

CVE-2026-20656 was published Feb 12, 2026

An authorization issue was addressed with improved state management. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43403 was published Feb 12, 2026

Vulnerabilities in the File Download and Get File handler components in CIPPlanner CIPAce before... High Unreviewed

CVE-2024-50617 was published Feb 12, 2026

Improper authorization in the Intel(R) Quick Assist Technology for some Intel(R) Platforms within... Moderate Unreviewed

CVE-2025-30508 was published Feb 10, 2026

It was identified that under certain specific preconditions, an API key that was originally... Critical Unreviewed

CVE-2024-37282 was published Jan 30, 2026

The web interface offers a functionality to export the internal SQLite database. After executing... Moderate Unreviewed

CVE-2025-59100 was published Jan 26, 2026

Azure Entra ID Elevation of Privilege Vulnerability Critical Unreviewed

CVE-2026-24305 was published Jan 23, 2026

HackerOne community member Jad Ghamloush (0xjad) has reported an authorization bypass... High Unreviewed

CVE-2026-21641 was published Jan 20, 2026

The weMail - Email Marketing, Lead Generation, Optin Forms, Email Newsletters, A/B Testing, and... Moderate Unreviewed

CVE-2025-14348 was published Jan 20, 2026

Improper authorization in Microsoft Power Apps allows an authorized attacker to execute code over... High Unreviewed

CVE-2026-20960 was published Jan 17, 2026

This vulnerability in Grafana's datasource proxy API allows authorization checks to be bypassed... Moderate Unreviewed

CVE-2026-22641 was published Jan 15, 2026

A Improper Authorization vulnerability in Foomuuri llows arbitrary users to influence the... Moderate Unreviewed

CVE-2025-67603 was published Jan 8, 2026

The Rankology SEO and Analytics Tool plugin for WordPress is vulnerable to unauthorized... Low Unreviewed

CVE-2025-12958 was published Jan 7, 2026

The Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2025-9294 was published Jan 6, 2026

Improper authorization in Microsoft Partner Center allows an unauthorized attacker to elevate... Critical Unreviewed

CVE-2025-65041 was published Dec 19, 2025

An authorization bypass vulnerability in FileMaker Server Admin Console allowed administrator... Moderate Unreviewed

CVE-2025-46296 was published Dec 16, 2025

PimpMyLog 1.7.14 contains an improper access control vulnerability that allows remote attackers... Critical Unreviewed

CVE-2023-53895 was published Dec 16, 2025

An issue was discovered in Wekan The Open Source kanban board system up to version 18.15, fixed... Moderate Unreviewed

CVE-2025-65782 was published Dec 15, 2025

A logic issue was addressed with improved file handling. This issue is fixed in macOS Sonoma 14.8... Moderate Unreviewed

CVE-2025-46289 was published Dec 12, 2025

A vulnerability has been identified in SINEC Security Monitor (All versions < V4.10.0). The... High Unreviewed

CVE-2025-40830 was published Dec 9, 2025

The g-FFL Cockpit plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed

CVE-2025-12720 was published Dec 6, 2025

The weDocs plugin for WordPress is vulnerable to unauthorized access in all versions up to, and... Moderate Unreviewed

CVE-2025-12505 was published Dec 6, 2025

In Terminalfour 8 through 8.4.1.1, the userLevel parameter in the user management function is not... Critical Unreviewed

CVE-2025-58386 was published Dec 2, 2025

Previous 12…23 Next

Previous 1 2 3 4 5 … 22 23 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

575 advisories