Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,908
Erlang
39
GitHub Actions
38
Go
2,568
Maven
5,000+
npm
4,240
NuGet
754
pip
4,004
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

17 advisories

Loading
Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker... Moderate Unreviewed
CVE-2025-55337 was published Oct 14, 2025
Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker... Moderate Unreviewed
CVE-2025-55682 was published Oct 14, 2025
Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker... Moderate Unreviewed
CVE-2025-55330 was published Oct 14, 2025
Improper enforcement of behavioral workflow in Windows BitLocker allows an unauthorized attacker... Moderate Unreviewed
CVE-2025-55332 was published Oct 14, 2025
A logic issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2... Moderate Unreviewed
CVE-2022-46710 was published Jan 11, 2024
User Enumeration and Data Integrity in Barcode functionality in OpenText Content Management... Moderate Unreviewed
CVE-2024-12543 was published Apr 21, 2025
A logic issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1... Low Unreviewed
CVE-2023-42939 was published Feb 21, 2024
This issue was addressed by adding an additional prompt for user consent. This issue is fixed in... Moderate Unreviewed
CVE-2024-44128 was published Sep 17, 2024
A loop hole in the payment logic of Sparkshop v1.16 allows attackers to arbitrarily modify the... High Unreviewed
CVE-2024-46307 was published Oct 9, 2024
An authorization bypass vulnerability was discovered in GitLab affecting versions 15.1 prior to... High Unreviewed
CVE-2024-0410 was published Feb 22, 2024
A vulnerability, which was classified as problematic, has been found in spa-cartcms 1.9.0.6. This... Moderate Unreviewed
CVE-2024-6128 was published Jun 18, 2024
An Improper Enforcement of Behavioral Workflow vulnerability in the exchangeDeviceServices... Moderate Unreviewed
CVE-2023-1383 was published May 3, 2023
Improper Enforcement of Behavioral Workflow vulnerability in DECE Software Geodi allows... High Unreviewed
CVE-2023-5921 was published Nov 22, 2023
A vulnerability, which was classified as critical, has been found in SourceCodester Free Hospital... Moderate Unreviewed
CVE-2023-4181 was published Aug 6, 2023
Controls limiting uploads to certain file extensions may be bypassed. This could allow an... High Unreviewed
CVE-2022-2102 was published Jun 25, 2022
Client-side JavaScript controls may be bypassed to change user credentials and permissions... Critical Unreviewed
CVE-2022-2105 was published Jun 25, 2022
Client-side JavaScript controls may be bypassed by directly running a JS function to reboot the... High Unreviewed
CVE-2022-1667 was published Jun 25, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database