GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,255
Composer 4,632
Erlang 34
GitHub Actions 25
Go 2,238
Maven 5,484
npm 3,900
NuGet 701
pip 3,666
Pub 12
RubyGems 914
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 252,404

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

301 advisories

Filter by severity

Sort by

Least recently updated

In Ubuntu, gnome-control-center did not properly reflect SSH remote login status when the system... Moderate Unreviewed

CVE-2023-5616 was published Apr 15, 2025

Authentication Bypass by Spoofing vulnerability in Ays Pro Survey Maker allows Identity Spoofing.... Moderate Unreviewed

CVE-2025-32275 was published Apr 10, 2025

Authentication Bypass by Spoofing vulnerability in Asgaros Asgaros Forum allows Identity Spoofing... Moderate Unreviewed

CVE-2025-32227 was published Apr 10, 2025

An issue in TOTVS Framework (Linha Protheus) 12.1.2310 allows attackers to bypass multi-factor... Critical Unreviewed

CVE-2024-55210 was published Apr 9, 2025

Access control vulnerability in the security verification module Impact: Successful exploitation... High Unreviewed

CVE-2025-31170 was published Apr 7, 2025

Access control vulnerability in the security verification module Impact: Successful exploitation... High Unreviewed

CVE-2024-58126 was published Apr 7, 2025

Access control vulnerability in the security verification module Impact: Successful exploitation... High Unreviewed

CVE-2024-58127 was published Apr 7, 2025

Access control vulnerability in the security verification module Impact: Successful exploitation... High Unreviewed

CVE-2024-58125 was published Apr 7, 2025

Access control vulnerability in the security verification module Impact: Successful exploitation... High Unreviewed

CVE-2024-58124 was published Apr 7, 2025

A crafted URL containing specific Unicode characters could have hidden the true origin of the... High Unreviewed

CVE-2025-3029 was published Apr 1, 2025

An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur.... High Unreviewed

CVE-2025-30142 was published Mar 18, 2025

On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's... Moderate Unreviewed

CVE-2025-30110 was published Mar 18, 2025

AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication... Critical Unreviewed

CVE-2024-54085 was published Mar 11, 2025

Certain crafted MIME email messages that claimed to contain an encrypted OpenPGP message, which... High Unreviewed

CVE-2025-26696 was published Mar 10, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923... Critical Unreviewed

CVE-2025-27671 was published Mar 5, 2025

The application or its infrastructure allows for IP address spoofing by providing its own value... Moderate Unreviewed

CVE-2025-22271 was published Feb 28, 2025

Opera Mini for Android before version 52.2 is vulnerable to an address bar spoofing attack. The... Moderate Unreviewed

CVE-2020-6158 was published Feb 21, 2025

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Cleaning Business Software... Moderate Unreviewed

CVE-2023-51326 was published Feb 20, 2025

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Night Club Booking... Moderate Unreviewed

CVE-2023-51321 was published Feb 20, 2025

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Cleaning Business Software... Moderate Unreviewed

CVE-2023-51327 was published Feb 20, 2025

A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Shared Asset Booking... Moderate Unreviewed

CVE-2023-51323 was published Feb 20, 2025

Authentication bypass by spoofing issue exists in FileMegane versions above 1.0.0.0 prior to 3.4... Moderate Unreviewed

CVE-2025-25055 was published Feb 18, 2025

The WPGateway Plugin for WordPress is vulnerable to privilege escalation in versions up to, and... Critical Unreviewed

CVE-2022-3180 was published Feb 12, 2025

The device ID is based on IMEI in Forever KidsWatch Call Me KW50 R36_YDR_A3PW_GM7S_V1... Moderate Unreviewed

CVE-2024-36557 was published Feb 6, 2025

Authentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to... Critical Unreviewed

CVE-2025-21415 was published Jan 30, 2025

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

301 advisories