Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,038 advisories

Loading
In XIQ-SE before 24.2.11, a low-privileged user may be able to access admin passwords, which... High Unreviewed
CVE-2024-38291 was published Feb 28, 2025
Rancher does not Properly Validate Account Bindings in SAML Authentication Enables User Impersonation on First Login High
CVE-2025-23389 was published for github.com/rancher/rancher (Go) Feb 27, 2025
Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows... High Unreviewed
CVE-2024-36259 was published Feb 25, 2025
Improper access control in the auth_oauth module of Odoo Community 15.0 and Odoo Enterprise 15.0... High Unreviewed
CVE-2024-12368 was published Feb 25, 2025
Improper access control in some Intel(R) Optane(TM) PMem software before versions 01.00.00.3547,... High Unreviewed
CVE-2023-27517 was published Feb 20, 2025
Improper access control in some Intel(R) Optane(TM) PMem 100 Series Management Software before... High Unreviewed
CVE-2023-22311 was published Feb 20, 2025
An improper access control vulnerability in Power Pages allows an unauthorized attacker to... High Unreviewed
CVE-2025-24989 was published Feb 20, 2025
Sage DPW before 2024_12_001 is vulnerable to Incorrect Access Control. The implemented role-based... High Unreviewed
CVE-2024-56883 was published Feb 18, 2025
Improper access control in some Intel(R) Graphics software may allow an authenticated user to... High Unreviewed
CVE-2024-37355 was published Feb 13, 2025
Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-24042 was published Feb 11, 2025
Magento Improper Access Control vulnerability High
CVE-2025-24411 was published for magento/community-edition (Composer) Feb 11, 2025
Windows Kernel Security Feature Bypass Vulnerability High Unreviewed
CVE-2025-21359 was published Feb 11, 2025
Tenda W18E V16.01.0.8(1625) is vulnerable to Incorrect Access Control. Unauthorized password... High Unreviewed
CVE-2024-46430 was published Feb 10, 2025
Tenda W18E V16.01.0.8(1625) is vulnerable to Incorrect Access Control. An attacker can send a... High Unreviewed
CVE-2024-46432 was published Feb 10, 2025
An improper access control vulnerability may allow privilege escalation.This issue affects:  *... High Unreviewed
CVE-2022-26389 was published Feb 7, 2025
Incorrect access control in the endpoint /admin/m_delete.php of CodeAstro Complaint Management... High Unreviewed
CVE-2024-56889 was published Feb 7, 2025
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... High Unreviewed
CVE-2025-0745 was published Jan 30, 2025
an Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... High Unreviewed
CVE-2025-0744 was published Jan 30, 2025
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... High Unreviewed
CVE-2025-0740 was published Jan 30, 2025
An Improper Access Control vulnerability has been found in EmbedAI 2.1 and below. This... High Unreviewed
CVE-2025-0739 was published Jan 30, 2025
A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass... High Unreviewed
CVE-2025-0650 was published Jan 23, 2025
With the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker... High Unreviewed
CVE-2025-23090 was published Jan 22, 2025
With the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker... High Unreviewed
CVE-2025-23083 was published Jan 22, 2025
Visual Studio Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21405 was published Jan 14, 2025
Active Directory Domain Services Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21293 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database