GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,776
Composer 4,863
Erlang 36
GitHub Actions 36
Go 2,491
Maven 5,913
npm 4,106
NuGet 735
pip 3,929
Pub 12
RubyGems 945
Rust 1,018
Swift 39

Unreviewed advisories

All unreviewed 268,750

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,768 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

There is an improper privilege management vulnerability identified in ManageEngine's Asset... High Unreviewed

CVE-2025-8309 was published Aug 20, 2025

The StrongDM Windows service incorrectly handled communication related to system certificate... High Unreviewed

CVE-2025-6182 was published Aug 20, 2025

CWE-269: Improper Privilege Management vulnerability exists that could cause privilege escalation... High Unreviewed

CVE-2025-8453 was published Aug 20, 2025

The Real Spaces - WordPress Properties Directory Theme theme for WordPress is vulnerable to... Critical Unreviewed

CVE-2025-6758 was published Aug 19, 2025

The Real Spaces - WordPress Properties Directory Theme theme for WordPress is vulnerable to... High Unreviewed

CVE-2025-8218 was published Aug 19, 2025

An issue in Adtran 411 ONT vL80.00.0011.M2 allows attackers to escalate privileges via... Critical Unreviewed

CVE-2025-22937 was published Mar 31, 2025

The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to unauthorized... High Unreviewed

CVE-2025-6080 was published Aug 16, 2025

In ESPEC North America Web Controller 3 before 3.3.8, an attacker with physical access can gain... Moderate Unreviewed

CVE-2025-27846 was published Aug 14, 2025

In ESPEC North America Web Controller 3 before 3.3.8, /api/v4/auth/ users session privileges are... Moderate Unreviewed

CVE-2025-27847 was published Aug 14, 2025

VMware NSX-T contains a privilege escalation vulnerability due to an issue with RBAC (Role based... High Unreviewed

CVE-2021-21981 was published May 24, 2022

Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed

CVE-2025-49758 was published Aug 12, 2025

Privilege escalation occurs when a user gets access to more resources or functionality than they... Moderate Unreviewed

CVE-2025-8660 was published Aug 11, 2025

OpenBao Root Namespace Operator May Elevate Token Privileges High

CVE-2025-54996 was published for github.com/openbao/openbao (Go) Aug 8, 2025

The installer for SAN Host Utilities for Windows versions prior to 8.0 is susceptible to a... High Unreviewed

CVE-2025-26513 was published Aug 7, 2025

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix... High Unreviewed

CVE-2025-4879 was published Jun 17, 2025

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Windows... High Unreviewed

CVE-2025-6759 was published Jul 9, 2025

Local Privilege escalation allows a low-privileged user to gain SYSTEM privileges in Citrix... High Unreviewed

CVE-2025-0320 was published Jun 17, 2025

The Reveal Listing plugin by smartdatasoft for WordPress is vulnerable to privilege escalation in... Critical Unreviewed

CVE-2025-6994 was published Aug 6, 2025

ZPanel includes a helper binary named zsudo, intended to allow restricted privilege escalation... High Unreviewed

CVE-2013-10052 was published Aug 4, 2025

Kloxo versions 6.1.12 and earlier contain two setuid root binaries—lxsuexec and lxrestart—that... High Unreviewed

CVE-2012-10022 was published Aug 1, 2025

The Service Finder SMS System plugin for WordPress is vulnerable to privilege escalation via... Critical Unreviewed

CVE-2025-5954 was published Aug 1, 2025

Improper Privilege Management vulnerability in Cloudflare WARP on Windows allows File... Moderate Unreviewed

CVE-2025-0651 was published Jan 22, 2025

A Broken Access Control vulnerability in MagnusBilling v7.8.5.3 allows newly registered users to... High Unreviewed

CVE-2025-52289 was published Jul 31, 2025

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sequoia 15.6... High Unreviewed

CVE-2025-43248 was published Jul 30, 2025

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia... High Unreviewed

CVE-2025-43256 was published Jul 30, 2025

Previous 1…3…151 Next

Previous 1 2 3 4 5 … 150 151 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,768 advisories