Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,026
Maven
5,000+
npm
4,763
NuGet
824
pip
4,366
Pub
12
RubyGems
987
Rust
1,143
Swift
50
Unreviewed advisories
All unreviewed
5,000+

27 advisories

Loading
Keycloak Admin API allows an administrator with limited privileges to retrieve sensitive custom attributes Low
CVE-2025-13881 was published for org.keycloak:keycloak-services (Maven) Feb 2, 2026
eminaktas
Credited to eminaktas
A vulnerability has been found in Sanluan PublicCMS up to 4.0.202506.d/5.202506.d/6.202506.d.... Low Unreviewed
CVE-2026-2010 was published Feb 6, 2026
MineAdmin has Incorrect Privilege Assignment Low
CVE-2026-1193 was published for mineadmin/mineadmin (Composer) Jan 20, 2026
A security vulnerability has been detected in WeKan up to 8.20. This affects the function... Low Unreviewed
CVE-2026-1892 was published Feb 5, 2026
A vulnerability was detected in JeecgBoot up to 3.9.0. This issue affects the function... Low Unreviewed
CVE-2025-15119 was published Dec 28, 2025
A vulnerability was found in JeecgBoot up to 3.9.0. The impacted element is the function... Low Unreviewed
CVE-2025-15122 was published Dec 28, 2025
A flaw has been found in JeecgBoot up to 3.9.0. Impacted is the function getDeptRoleList of the... Low Unreviewed
CVE-2025-15120 was published Dec 28, 2025
A weakness has been identified in JeecgBoot up to 3.9.0. Affected by this vulnerability is the... Low Unreviewed
CVE-2025-15126 was published Dec 28, 2025
A vulnerability was determined in JeecgBoot up to 3.9.0. This affects an unknown function of the... Low Unreviewed
CVE-2025-15123 was published Dec 28, 2025
A security flaw has been discovered in JeecgBoot up to 3.9.0. Affected is the function... Low Unreviewed
CVE-2025-15125 was published Dec 28, 2025
A vulnerability was identified in JeecgBoot up to 3.9.0. This impacts the function... Low Unreviewed
CVE-2025-15124 was published Dec 28, 2025
A vulnerability was identified in youlaitech youlai-mall 1.0.0/2.0.0. The impacted element is the... Low Unreviewed
CVE-2025-15084 was published Dec 25, 2025
Deno's --deny-write check does not prevent permission bypass Low
CVE-2025-61785 was published for deno (Rust) Oct 7, 2025
dellalibera
Credited to dellalibera
A vulnerability was determined in Tomofun Furbo 360 and Furbo Mini. This impacts an unknown... Low Unreviewed
CVE-2025-11641 was published Oct 12, 2025
A vulnerability has been found in Frappe LMS 2.35.0. The affected element is an unknown function... Low Unreviewed
CVE-2025-11281 was published Oct 5, 2025
IBM i 7.2, 7.3, 7.4, and 7.5 is vulnerable to a file level local denial of service caused by an... Low Unreviewed
CVE-2024-35122 was published Jan 24, 2025
A vulnerability was identified in JeecgBoot up to 3.8.2. Impacted is an unknown function of the... Low Unreviewed
CVE-2025-10977 was published Sep 26, 2025
A vulnerability was determined in JeecgBoot up to 3.8.2. This issue affects some unknown... Low Unreviewed
CVE-2025-10976 was published Sep 26, 2025
A flaw has been found in elunez eladmin up to 2.7. This impacts the function updateUserEmail of... Low Unreviewed
CVE-2025-10014 was published Sep 5, 2025
A vulnerability was found in Buttercup buttercup-browser-extension up to 0.14.2. Affected by this... Low Unreviewed
CVE-2017-20199 was published Aug 16, 2025
SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4... Low Unreviewed
CVE-2025-36613 was published Aug 14, 2025
JuzaWeb CMS is vulnerable to Incorrect Privilege Assignment when installing Import Page component Low
CVE-2025-6735 was published for juzaweb/cms (Composer) Jun 27, 2025
JuzaWeb CMS is vulnerable to Incorrect Privilege Assignment when installing certain components Low
CVE-2025-6736 was published for juzaweb/cms (Composer) Jun 27, 2025
A vulnerability, which was classified as problematic, was found in 70mai M300 up to 20250611.... Low Unreviewed
CVE-2025-6527 was published Jun 26, 2025
A vulnerability classified as problematic has been found in y_project RuoYi 4.8.0. Affected is an... Low Unreviewed
CVE-2025-4819 was published May 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database