Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,744
Maven
5,000+
npm
4,341
NuGet
765
pip
4,113
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

531 advisories

Loading
Due to improper BLE security configurations on the device's GATT server, an adjacent... High Unreviewed
CVE-2024-2104 was published Dec 10, 2025
Selea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote... High Unreviewed
CVE-2021-47727 was published Dec 9, 2025
MiniDVBLinux 5.4 contains an unauthenticated vulnerability in the tv_action.sh script that allows... High Unreviewed
CVE-2023-53773 was published Dec 9, 2025
COMMAX Smart Home System allows an unauthenticated attacker to change configuration and cause... High Unreviewed
CVE-2021-47709 was published Dec 9, 2025
COMMAX Smart Home System is a smart IoT home solution that allows an unauthenticated attacker to... High Unreviewed
CVE-2021-47710 was published Dec 9, 2025
Better Auth: Unauthenticated API key creation through api-key plugin High
CVE-2025-61928 was published for better-auth (npm) Oct 9, 2025
etiennelunetta
Credited to etiennelunetta
ThinkPHP before 3.2.4, as used in Open Source BMS v1.1.1 and other products, allows Remote... High Unreviewed
CVE-2019-9082 was published May 13, 2022
In multiple locations, there is a possible way to launch activities from the background due to a... High Unreviewed
CVE-2025-48572 was published Dec 8, 2025
AirKeyboard iOS App 1.0.5 contains a missing authentication vulnerability that allows... High Unreviewed
CVE-2025-66555 was published Dec 4, 2025
The OTP Integration Kit for PingFederate fails to enforce HTTP method validation and state... High Unreviewed
CVE-2025-27935 was published Dec 4, 2025
Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for... High Unreviewed
CVE-2025-54158 was published Dec 4, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed
CVE-2025-54851 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed
CVE-2025-54850 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec... High Unreviewed
CVE-2025-23417 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP functionality of Socomec DIRIS... High Unreviewed
CVE-2024-49572 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function... High Unreviewed
CVE-2025-55221 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function... High Unreviewed
CVE-2025-55222 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed
CVE-2025-54849 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed
CVE-2025-54848 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec... High Unreviewed
CVE-2025-20085 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP functionality of Socomec DIRIS... High Unreviewed
CVE-2024-48882 was published Dec 1, 2025
ESCAM QD-900 WIFI HD cameras contain an unauthenticated configuration disclosure vulnerability in... High Unreviewed
CVE-2020-36871 was published Nov 27, 2025
ACE SECURITY WIP-90113 HD cameras contain an unauthenticated configuration disclosure... High Unreviewed
CVE-2020-36874 was published Nov 27, 2025
Dongyoung Media DM-AP240T/W wireless access points contain an unauthenticated configuration... High Unreviewed
CVE-2019-25226 was published Nov 27, 2025
Tellion HN-2204AP routers contain an unauthenticated configuration disclosure vulnerability in... High Unreviewed
CVE-2019-25227 was published Nov 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database