GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
108 advisories
Filter by severity
RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2025-14492
was published
Dec 24, 2025
RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2025-14490
was published
Dec 24, 2025
RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability....
High
Unreviewed
CVE-2025-14489
was published
Dec 24, 2025
Cross-site scripting (XSS) vulnerability in a reachable files_pdfviewer example directory in...
Moderate
Unreviewed
CVE-2025-59788
was published
Dec 4, 2025
Memory corruption while processing request sent from GVM.
High
Unreviewed
CVE-2025-47353
was published
Nov 4, 2025
The Flock Safety Android Collins application (aka com.flocksafety.android.collins) 6.35.31 for...
Moderate
Unreviewed
CVE-2025-59403
was published
Oct 2, 2025
GoldenDict 1.5.0 and 1.5.1 has an exposed dangerous method that allows reading and modifying...
Critical
Unreviewed
CVE-2025-53964
was published
Jul 17, 2025
A vulnerability in HPE Insight Remote Support (IRS) prior to v7.15.0.646 may allow an...
High
Unreviewed
CVE-2025-37097
was published
Jul 1, 2025
Autel MaxiCharger AC Wallbox Commercial Serial Number Exposed Dangerous Method Information...
Moderate
Unreviewed
CVE-2025-5823
was published
Jun 26, 2025
WOLFBOX Level 2 EV Charger LAN OTA Exposed Dangerous Method Remote Code Execution Vulnerability....
High
Unreviewed
CVE-2025-5748
was published
Jun 6, 2025
A USB backdoor feature can be triggered by attaching a USB drive that contains specially crafted ...
Moderate
Unreviewed
CVE-2025-48415
was published
May 21, 2025
SAP S/4 HANA allows an authenticated attacker with user privileges to configure a field not...
Moderate
Unreviewed
CVE-2025-43003
was published
May 13, 2025
TwsCachedXPathAPI in Convertigo through 8.3.4 does not restrict the use of commons-jxpath APIs.
Low
Unreviewed
CVE-2025-43955
was published
Apr 20, 2025
Interface exposure vulnerability in the mobile application (com.transsion.carlcare) may lead to ...
High
Unreviewed
CVE-2025-3698
was published
Apr 16, 2025
Exposed dangerous method or function in Windows Local Session Manager (LSM) allows an authorized...
Moderate
Unreviewed
CVE-2025-26651
was published
Apr 8, 2025
Cryptographic issues while generating an asymmetric key pair for RKP use cases.
High
Unreviewed
CVE-2024-43065
was published
Apr 7, 2025
Exposed Dangerous Method or Function vulnerability in PTT Inc. HGS Mobile App allows Manipulating...
High
Unreviewed
CVE-2024-12651
was published
Feb 14, 2025
Exposed Dangerous Method or Function vulnerability in Drupal Swift Mailer allows Resource...
Critical
Unreviewed
CVE-2024-13242
was published
Jan 9, 2025
PaperCut NG print.script.sandboxed Exposed Dangerous Function Remote Code Execution Vulnerability...
High
Unreviewed
CVE-2023-39470
was published
Nov 22, 2024
Sharp and Toshiba Tec MFPs provide configuration related APIs. They are expected to be called by...
High
Unreviewed
CVE-2024-47005
was published
Oct 25, 2024
The lack of access restriction to a resource from unauthorized users makes MXsecurity software...
Moderate
Unreviewed
CVE-2024-4739
was published
Oct 18, 2024
Local Privilege Escalation in MSI-Installer in baramundi Management Agent v23.1.172.0 on Windows...
High
Unreviewed
CVE-2024-6689
was published
Jul 15, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ...
High
Unreviewed
CVE-2024-35209
was published
Jun 11, 2024
parisneo/lollms-webui is vulnerable to path traversal and denial of service attacks due to an...
High
Unreviewed
CVE-2024-1873
was published
Jun 6, 2024
Voltronic Power ViewPower LinuxMonitorConsole Exposed Dangerous Method Remote Code Execution...
Critical
Unreviewed
CVE-2023-51582
was published
May 3, 2024
ProTip!
Advisories are also available from the
GraphQL API