GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,041
Composer 5,081
Erlang 40
GitHub Actions 38
Go 2,752
Maven 6,172
npm 4,357
NuGet 765
pip 4,121
Pub 12
RubyGems 961
Rust 1,069
Swift 45

Unreviewed advisories

All unreviewed 280,789

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

534 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The TP-Link KP303 Smartplug can be issued unauthenticated protocol commands that may cause... High Unreviewed

CVE-2025-8627 was published Aug 26, 2025

A vulnerability has been discovered in AC Smart II where passwords can be changed without... High Unreviewed

CVE-2025-10204 was published Sep 14, 2025

Unauthenticated Telnet access vulnerability in Calix GigaCenter ONT allows root access.This issue... High Unreviewed

CVE-2025-7635 was published Sep 9, 2025

SecGate3600, a network firewall product developed by NSFOCUS, contains a sensitive information... High Unreviewed

CVE-2023-7308 was published Aug 28, 2025

A code execution security issue exists in the affected product. An attacker with physical access... High Unreviewed

CVE-2025-9160 was published Sep 9, 2025

Missing Authentication for Critical Function vulnerability in ABB Aspect.This issue affects... High Unreviewed

CVE-2025-7677 was published Aug 11, 2025

The Schneider Electric ETG3000 FactoryCast HMI Gateway with firmware before 1.60 IR 04 stores rde... High Unreviewed

CVE-2014-9197 was published May 17, 2022

Phoenix Contact ProConOs and MultiProg do not require authentication, which allows remote... High Unreviewed

CVE-2014-9195 was published May 14, 2022

Improper Access Control issue in the Workflow component of Fortra's FileCatalyst allows... High Unreviewed

CVE-2025-8450 was published Aug 19, 2025

The system exposes several endpoints, typically including "/int/" in their path, that should be... High Unreviewed

CVE-2025-30037 was published Aug 27, 2025

An unauthenticated remote attacker can access information about running processes via the SNMP... High Unreviewed

CVE-2025-41654 was published May 26, 2025

A security issue exists within the 5032 16pt Digital Configurable module’s web server.... High Unreviewed

CVE-2025-7774 was published Aug 14, 2025

Missing Authentication for Critical Function vulnerability in ABB ABB AbilityTM zenon.This issue... High Unreviewed

CVE-2025-8754 was published Aug 13, 2025

Missing authentication for critical function in Windows StateRepository API allows an authorized... High Unreviewed

CVE-2025-53789 was published Aug 12, 2025

A low-privileged local attacker can exploit improper permissions on nssm.exe to escalate their... High Unreviewed

CVE-2025-41686 was published Aug 12, 2025

Mattermost Confluence Plugin is Missing Authentication for Critical Function High

CVE-2025-44004 was published for github.com/mattermost/mattermost-plugin-confluence (Go) Aug 11, 2025

Missing Authentication for Critical Function vulnerability in ABB Aspect.This issue affects... High Unreviewed

CVE-2025-7679 was published Aug 11, 2025

Missing Authentication for Critical Function vulnerability in ABB Aspect.This issue affects... High Unreviewed

CVE-2025-53191 was published Aug 11, 2025

In the Airoha Bluetooth audio SDK, there is a possible permission bypass that allows access... High Unreviewed

CVE-2025-20700 was published Aug 4, 2025

In the Airoha Bluetooth audio SDK, there is a possible unauthorized access to the RACE protocol.... High Unreviewed

CVE-2025-20702 was published Aug 4, 2025

Insufficient input validation within GitLab Language Server 7.6.0 and later before 7.30.0 allows... High Unreviewed

CVE-2025-8279 was published Jul 28, 2025

A client-side remote code execution vulnerability exists in Samsung Security Manager versions 1... High Unreviewed

CVE-2016-15046 was published Jul 25, 2025

DuraComm SPM-500 DP-10iN-100-MU lacks access controls for a function that should require user... High Unreviewed

CVE-2025-48733 was published Jul 23, 2025

A remote file disclosure vulnerability exists in EasyCafe Server 2.2.14, exploitable by... High Unreviewed

CVE-2025-34119 was published Jul 16, 2025

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)... High Unreviewed

CVE-2025-30762 was published Jul 15, 2025

Previous 1…5…22 Next

Previous 1 2 3 4 5 6 7 … 21 22 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

534 advisories