Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
21
Go
2,094
Maven
5,000+
npm
3,759
NuGet
678
pip
3,445
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

895 advisories

Loading
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Moderate Unreviewed
CVE-2025-21502 was published Jan 21, 2025
Versions of Sage 300 through 2022 implement role-based access controls that are only enforced... Moderate Unreviewed
CVE-2023-29927 was published Jul 6, 2023
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security:... Moderate Unreviewed
CVE-2025-21540 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security:... Moderate Unreviewed
CVE-2025-21519 was published Jan 21, 2025
Vulnerability in the PeopleSoft Enterprise FIN eSettlements product of Oracle PeopleSoft ... Moderate Unreviewed
CVE-2025-21539 was published Jan 21, 2025
Vulnerability in the PeopleSoft Enterprise FIN Cash Management product of Oracle PeopleSoft ... Moderate Unreviewed
CVE-2025-21537 was published Jan 21, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Moderate Unreviewed
CVE-2025-21533 was published Jan 21, 2025
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... Moderate Unreviewed
CVE-2025-21517 was published Jan 21, 2025
In JetBrains TeamCity before 2024.12.1 improper access control allowed to see Projects’ names in... Moderate Unreviewed
CVE-2025-24460 was published Jan 21, 2025
Operation restriction bypass vulnerability in MultiReport of Cybozu Garoon 5.15.0 allows a remote... Moderate Unreviewed
CVE-2023-27384 was published May 23, 2023
Canlineapp Online 1.1 is vulnerable to Broken Access Control and allows users with the Auditor... Moderate Unreviewed
CVE-2024-56114 was published Jan 9, 2025
On-Premises Data Gateway Information Disclosure Vulnerability Moderate Unreviewed
CVE-2025-21403 was published Jan 14, 2025
Incorrect Authorization vulnerability in Drupal OhDear Integration allows Forceful Browsing.This... Moderate Unreviewed
CVE-2024-13290 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Responsive and off-canvas menu allows Forceful... Moderate Unreviewed
CVE-2024-13266 was published Jan 9, 2025
OX App Suite before backend 7.10.6-rev37 allows authenticated users to bypass access controls ... Moderate Unreviewed
CVE-2023-24600 was published May 29, 2023
Incorrect Authorization vulnerability in Drupal Pages Restriction Access allows Forceful Browsing... Moderate Unreviewed
CVE-2024-13302 was published Jan 9, 2025
Incorrect Authorization vulnerability in Drupal Commerce View Receipt allows Forceful Browsing... Moderate Unreviewed
CVE-2024-13257 was published Jan 9, 2025
A duplicate <code>SystemPrincipal</code> object could be created when parsing a non-system html... Moderate Unreviewed
CVE-2023-23604 was published Jun 2, 2023
Android applications with unpatched vulnerabilities can be launched from a browser using Intents,... Moderate Unreviewed
CVE-2023-25749 was published Jun 2, 2023
The WebChannel API, which is used to transport various information across processes, did not... Moderate Unreviewed
CVE-2025-0237 was published Jan 7, 2025
The EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps &... Moderate Unreviewed
CVE-2024-1803 was published May 23, 2024
An issue found in Blue Light Filter v.1.5.5 for Android allows unauthorized apps to cause a... Moderate Unreviewed
CVE-2023-29758 was published Jun 9, 2023
An issue found in FlightAware v.5.8.0 for Android allows unauthorized apps to cause a persistent... Moderate Unreviewed
CVE-2023-29759 was published Jun 9, 2023
Incorrect access control in Chamilo 1.11.* up to 1.11.18 allows a student subscribed to a given... Moderate Unreviewed
CVE-2023-34958 was published Jun 8, 2023
An issue found in Sleep v.20230303 for Android allows unauthorized apps to cause a persistent... Moderate Unreviewed
CVE-2023-29761 was published Jun 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database