Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,108
Maven
5,000+
npm
3,764
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,450 advisories

Loading
WildFly improper RBAC permission Moderate
CVE-2025-23367 was published for org.wildfly.core:wildfly-server (Maven) Jan 31, 2025
General OpenMRS Security Advisory, January 2025: Penetration Testing Results and Patches Critical
GHSA-vpxm-cr3r-pjp9 was published for org.openmrs.module:addresshierarchy (Maven) Jan 30, 2025
slubwama mseaton
Duplicate Advisory: Wildfly Server Role Based Access Control (RBAC) provider has Improper Access Control Moderate
GHSA-fcrw-mphx-7cxf was published for org.wildfly:wildfly-server (Maven) Jan 30, 2025 withdrawn
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... High Unreviewed
CVE-2025-0745 was published Jan 30, 2025
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... High Unreviewed
CVE-2025-0740 was published Jan 30, 2025
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... Moderate Unreviewed
CVE-2025-0743 was published Jan 30, 2025
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... Moderate Unreviewed
CVE-2025-0741 was published Jan 30, 2025
an Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... High Unreviewed
CVE-2025-0744 was published Jan 30, 2025
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... Moderate Unreviewed
CVE-2025-0742 was published Jan 30, 2025
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... High Unreviewed
CVE-2025-0739 was published Jan 30, 2025
The Event Tickets and Registration plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed
CVE-2024-13457 was published Jan 30, 2025
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an... Moderate Unreviewed
CVE-2024-22316 was published Jan 27, 2025
A vulnerability classified as critical was found in needyamin image_gallery 1.0. This... Moderate Unreviewed
CVE-2025-0722 was published Jan 27, 2025
IBM i 7.2, 7.3, 7.4, and 7.5 is vulnerable to a file level local denial of service caused by an... Low Unreviewed
CVE-2024-35122 was published Jan 24, 2025
A vulnerability classified as critical was found in JoeyBling bootplus up to... Moderate Unreviewed
CVE-2025-0702 was published Jan 24, 2025
A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass... High Unreviewed
CVE-2025-0650 was published Jan 23, 2025
The Tutor LMS plugin for WordPress is vulnerable to bypass to user registration in versions up to... Moderate Unreviewed
CVE-2024-10393 was published Jan 23, 2025
A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0... Moderate Unreviewed
CVE-2025-0582 was published Jan 20, 2025
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21185 was published Jan 17, 2025
The WP Hotel Booking plugin for WordPress is vulnerable to unauthorized modification of data due... Moderate Unreviewed
CVE-2024-12370 was published Jan 17, 2025
Visual Studio Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21405 was published Jan 14, 2025
Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2025-21340 was published Jan 14, 2025
Windows Geolocation Service Information Disclosure Vulnerability Moderate Unreviewed
CVE-2025-21301 was published Jan 14, 2025
Active Directory Domain Services Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21293 was published Jan 14, 2025
Windows Recovery Environment Agent Elevation of Privilege Vulnerability Moderate Unreviewed
CVE-2025-21202 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database