Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

3,396 advisories

Loading
An issue found in Webroot SecureAnywhere Endpoint Protection CE 23.1 v.9.0.33.39 and before... Moderate Unreviewed
CVE-2023-29819 was published May 12, 2023
Directus allows privilege escalation using Share feature Moderate
CVE-2025-24353 was published for directus (npm) Jan 23, 2025
viters
Improper Privilege Management vulnerability in Cloudflare WARP on Windows allows File... Moderate Unreviewed
CVE-2025-0651 was published Jan 22, 2025
Buildah allows build breakout using malicious Containerfiles and concurrent builds High
CVE-2024-11218 was published for github.com/containers/buildah (Go) Jan 21, 2025
eriksjolund
The Settings module has the file privilege escalation vulnerability.Successful exploitation of... High Unreviewed
CVE-2023-1693 was published May 20, 2023
Zot IdP group membership revocation ignored High
CVE-2025-23208 was published for zotregistry.dev/zot (Go) Jan 17, 2025
jeff-mccoy
Issue with whitespace in JWT roles in OpenSearch Moderate
CVE-2023-23612 was published for org.opensearch.plugin:opensearch-security (Maven) Jan 24, 2023
binary-1024
The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in... Critical Unreviewed
CVE-2024-9636 was published Jan 15, 2025
ipip downloads Resources over HTTP Moderate
CVE-2016-10594 was published for ipip (npm) Feb 18, 2019
vulnerability-analyst
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21360 was published Jan 14, 2025
Windows Web Threat Defense User Service Information Disclosure Vulnerability High Unreviewed
CVE-2025-21343 was published Jan 14, 2025
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21287 was published Jan 14, 2025
An improper privilege management vulnerability in the web management interface of the Zyxel... High Unreviewed
CVE-2024-12398 was published Jan 14, 2025
Vulnerability of improper permission control in the window management module Impact: Successful... High Unreviewed
CVE-2024-56447 was published Jan 8, 2025
A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for... High Unreviewed
CVE-2024-11128 was published Jan 14, 2025
A vulnerability in the Gen7 SonicOS Cloud platform NSv, allows a remote authenticated local low... High Unreviewed
CVE-2024-53706 was published Jan 9, 2025
OpenShift Controller Manager Improper Privilege Management Moderate
CVE-2024-45496 was published for github.com/openshift/openshift-controller-manager (Go) Sep 17, 2024
The grc-policy-propagator allows security escalation within the cluster. The propagator allows... High Unreviewed
CVE-2023-3027 was published Jun 6, 2023
Account Takeover via Session Fixation in Zitadel [Bypassing MFA] High
CVE-2024-28197 was published for github.com/zitadel/zitadel (Go) Mar 11, 2024
amit-laish
In versions 1.0.67 and lower of the Splunk App for SOAR, the Splunk documentation for that app... Moderate Unreviewed
CVE-2025-22621 was published Jan 7, 2025
Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability. Moderate Unreviewed
CVE-2022-41115 was published Dec 13, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-37970 was published Oct 12, 2022
Microsoft Windows Defender Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-37971 was published Oct 12, 2022
Azure Arc-enabled Kubernetes cluster Connect Elevation of Privilege Vulnerability. Critical Unreviewed
CVE-2022-37968 was published Oct 12, 2022
Windows Hyper-V Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-37979 was published Oct 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database