Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,968
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,038
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

275,729 advisories

Loading
IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and 24.0.0 could allow an authenticated... Moderate Unreviewed
CVE-2025-36092 was published Nov 3, 2025
IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and 24.0.0 could allow an authenticated... Moderate Unreviewed
CVE-2025-36091 was published Nov 3, 2025
School Management System PHP v1.0 is vulnerable to Cross Site Scripting (XSS) in /login.php via... Moderate Unreviewed
CVE-2025-63443 was published Nov 3, 2025
Simple User Management System with PHP-MySQL v1.0 is vulnerable to Cross-Site Scripting (XSS) via... Moderate Unreviewed
CVE-2025-63442 was published Nov 3, 2025
Missing Authorization vulnerability in d3wp WP Snow Effect allows Accessing Functionality Not... Moderate Unreviewed
CVE-2025-64294 was published Nov 3, 2025
A security flaw has been discovered in jeecgboot jeewx-boot up to... Moderate Unreviewed
CVE-2025-12626 was published Nov 3, 2025
In the Linux kernel, the following vulnerability has been resolved: can: hi311x: fix null... Unknown Unreviewed
CVE-2025-40107 was published Nov 3, 2025
The Doccure Core plugin for WordPress is vulnerable to privilege escalation in versions up to,... Critical Unreviewed
CVE-2025-8900 was published Nov 3, 2025
NetSurf 3.11 is vulnerable to Use After Free in dom_node_set_text_content function. Moderate Unreviewed
CVE-2025-29699 was published Nov 3, 2025
An issue in NetSurf v3.11 causes the application to read uninitialized heap memory when creating... Moderate Unreviewed
CVE-2025-45663 was published Nov 3, 2025
An issue in Raspberry Pi Imager version 1.9.6 for Windows, affecting its OS customization feature... Moderate Unreviewed
CVE-2025-60892 was published Nov 3, 2025
An issue in NetSurf v.3.11 allows a remote attacker to execute arbitrary code via the... Moderate Unreviewed
CVE-2024-51317 was published Nov 3, 2025
Authorization Bypass Through User-Controlled Key vulnerability in CB Project Ltd. Co. CVLand... Critical Unreviewed
CVE-2025-0987 was published Nov 3, 2025
A vulnerability was identified in fushengqian fuint up to... Low Unreviewed
CVE-2025-12623 was published Nov 3, 2025
A vulnerability has been found in Tenda AC8 16.03.34.06. This impacts an unknown function of the... High Unreviewed
CVE-2025-12618 was published Nov 3, 2025
A vulnerability was determined in Tenda AC10 16.03.10.13. Affected by this vulnerability is the... High Unreviewed
CVE-2025-12622 was published Nov 3, 2025
A vulnerability was found in Tenda A15 15.13.07.13. Affected is the function... High Unreviewed
CVE-2025-12619 was published Nov 3, 2025
EasyFlow .NET and EasyFlow AiNet developed by Digiwin has a SQL Injection vulnerability, allowing... High Unreviewed
CVE-2025-12503 was published Nov 3, 2025
Arbitrary code execution is possible due to improper validation of the file upload functionality... High Unreviewed
CVE-2025-48396 was published Nov 3, 2025
The privileged user could log in without sufficient credentials after enabling an application... High Unreviewed
CVE-2025-48397 was published Nov 3, 2025
A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown... Moderate Unreviewed
CVE-2025-12616 was published Nov 3, 2025
A security vulnerability has been detected in PHPGurukul News Portal 1.0. The affected element is... Low Unreviewed
CVE-2025-12615 was published Nov 3, 2025
A flaw has been found in itsourcecode Billing System 1.0. This affects an unknown function of the... Moderate Unreviewed
CVE-2025-12617 was published Nov 3, 2025
A vulnerability was found in CodeAstro Gym Management System 1.0. Affected by this issue is some... Moderate Unreviewed
CVE-2025-12609 was published Nov 3, 2025
A vulnerability was determined in CodeAstro Gym Management System 1.0. This affects an unknown... Moderate Unreviewed
CVE-2025-12610 was published Nov 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database