Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

3,392 advisories

Loading
Issue with whitespace in JWT roles in OpenSearch Moderate
CVE-2023-23612 was published for org.opensearch.plugin:opensearch-security (Maven) Jan 24, 2023
binary-1024
The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in... Critical Unreviewed
CVE-2024-9636 was published Jan 15, 2025
ipip downloads Resources over HTTP Moderate
CVE-2016-10594 was published for ipip (npm) Feb 18, 2019
vulnerability-analyst
Windows Web Threat Defense User Service Information Disclosure Vulnerability High Unreviewed
CVE-2025-21343 was published Jan 14, 2025
Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21360 was published Jan 14, 2025
Windows Installer Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21287 was published Jan 14, 2025
An improper privilege management vulnerability in the web management interface of the Zyxel... High Unreviewed
CVE-2024-12398 was published Jan 14, 2025
Vulnerability of improper permission control in the window management module Impact: Successful... High Unreviewed
CVE-2024-56447 was published Jan 8, 2025
A vulnerability in the BitdefenderVirusScanner binary as used in Bitdefender Virus Scanner for... High Unreviewed
CVE-2024-11128 was published Jan 14, 2025
A vulnerability in the Gen7 SonicOS Cloud platform NSv, allows a remote authenticated local low... High Unreviewed
CVE-2024-53706 was published Jan 9, 2025
OpenShift Controller Manager Improper Privilege Management Moderate
CVE-2024-45496 was published for github.com/openshift/openshift-controller-manager (Go) Sep 17, 2024
The grc-policy-propagator allows security escalation within the cluster. The propagator allows... High Unreviewed
CVE-2023-3027 was published Jun 6, 2023
Account Takeover via Session Fixation in Zitadel [Bypassing MFA] High
CVE-2024-28197 was published for github.com/zitadel/zitadel (Go) Mar 11, 2024
amit-laish
In versions 1.0.67 and lower of the Splunk App for SOAR, the Splunk documentation for that app... Moderate Unreviewed
CVE-2025-22621 was published Jan 7, 2025
Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability. Moderate Unreviewed
CVE-2022-41115 was published Dec 13, 2022
Microsoft Windows Defender Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-37971 was published Oct 12, 2022
Azure Arc-enabled Kubernetes cluster Connect Elevation of Privilege Vulnerability. Critical Unreviewed
CVE-2022-37968 was published Oct 12, 2022
Windows DWM Core Library Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-37970 was published Oct 12, 2022
Windows Hyper-V Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-37979 was published Oct 12, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-44708 was published Dec 13, 2022
Active Directory Certificate Services Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-37976 was published Oct 12, 2022
Windows Group Policy Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-37975 was published Oct 12, 2022
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from... High Unreviewed
CVE-2022-33680 was published Jul 8, 2022
Microsoft Exchange Server Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-41040 was published Oct 4, 2022
Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability. Moderate Unreviewed
CVE-2022-30154 was published Jun 16, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database