GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,519
Maven
5,000+
npm
4,156
NuGet
736
pip
3,956
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
4,988 advisories
Filter by severity
Missing Authorization vulnerability in gutentor Gutentor allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2025-58783
was published
Sep 5, 2025
In multiple locations, there is a possible way to record audio via a background app due to a...
High
Unreviewed
CVE-2025-48549
was published
Sep 4, 2025
In isSystem of WifiPermissionsUtil.java, there is a possible permission bypass due to a missing...
Moderate
Unreviewed
CVE-2025-48524
was published
Sep 4, 2025
In multiple locations, there is a possible one-time permission bypass due to a logic error in the...
High
Unreviewed
CVE-2025-48547
was published
Sep 4, 2025
In FrpBypassAlertActivity of FrpBypassAlertActivity.java, there is a possible way to bypass FRP...
High
Unreviewed
CVE-2025-22414
was published
Sep 4, 2025
In multiple locations, there is a possible way to view icons belonging to another user due to a...
Low
Unreviewed
CVE-2025-0076
was published
Sep 4, 2025
Missing Authorization vulnerability in Ali Khallad Contact Form By Mega Forms allows Exploiting...
Moderate
Unreviewed
CVE-2025-58639
was published
Sep 3, 2025
Missing Authorization vulnerability in Surfer Surfer allows Exploiting Incorrectly Configured...
Moderate
Unreviewed
CVE-2025-58603
was published
Sep 3, 2025
Missing Authorization vulnerability in Barn2 Plugins Posts Table with Search & Sort allows...
Moderate
Unreviewed
CVE-2025-58613
was published
Sep 3, 2025
Missing Authorization vulnerability in FAKTOR VIER F4 Media Taxonomies allows Exploiting...
Moderate
Unreviewed
CVE-2025-58617
was published
Sep 3, 2025
Missing Authorization vulnerability in yydevelopment Mobile Contact Line allows Exploiting...
Moderate
Unreviewed
CVE-2025-58622
was published
Sep 3, 2025
Missing Authorization vulnerability in peachpay PeachPay Payments allows Exploiting Incorrectly...
Moderate
Unreviewed
CVE-2025-58634
was published
Sep 3, 2025
Missing Authorization vulnerability in PalsCode Support Genix allows Exploiting Incorrectly...
Moderate
Unreviewed
CVE-2025-58635
was published
Sep 3, 2025
Missing Authorization vulnerability in Frisbii Frisbii Pay allows Exploiting Incorrectly...
Moderate
Unreviewed
CVE-2025-58616
was published
Sep 3, 2025
Missing Authorization vulnerability in RadiusTheme Classified Listing allows Exploiting...
Moderate
Unreviewed
CVE-2025-58601
was published
Sep 3, 2025
Missing Authorization vulnerability in CozyThemes SaasLauncher allows Exploiting Incorrectly...
Moderate
Unreviewed
CVE-2025-58606
was published
Sep 3, 2025
Missing Authorization vulnerability in themefusecom Brizy allows Exploiting Incorrectly...
Moderate
Unreviewed
CVE-2025-58594
was published
Sep 3, 2025
Missing Authorization vulnerability in tychesoftwares Order Delivery Date for WooCommerce allows...
Moderate
Unreviewed
CVE-2025-58599
was published
Sep 3, 2025
Missing Authorization vulnerability in Cozmoslabs Paid Member Subscriptions allows Exploiting...
Moderate
Unreviewed
CVE-2025-58600
was published
Sep 3, 2025
Jenkins OpenTelemetry Plugin missing permission check allows capturing credentials
Moderate
CVE-2025-58460
was published
for
io.jenkins.plugins:opentelemetry
(Maven)
Sep 3, 2025
Missing Authorization vulnerability in Malcure Web Security Malcure Malware Scanner allows...
Moderate
Unreviewed
CVE-2025-3701
was published
Sep 3, 2025
ATEN eco DC Missing Authorization Privilege Escalation Vulnerability. This vulnerability allows...
High
Unreviewed
CVE-2025-6685
was published
Sep 2, 2025
Missing Authorization vulnerability in Hamid Alinia Login with phone number.This issue affects...
Critical
Unreviewed
CVE-2024-32832
was published
Aug 31, 2025
Missing Authorization vulnerability in UkrSolution Barcode Scanner with Inventory & Order Manager...
High
Unreviewed
CVE-2024-32589
was published
Aug 31, 2025
Liferay Portal allows improper access through the expandoTableLocalService
Moderate
CVE-2025-43773
was published
for
com.liferay:com.liferay.portal.workflow.kaleo.runtime.impl
(Maven)
Aug 29, 2025
ProTip!
Advisories are also available from the
GraphQL API