Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

300,194 advisories

Loading
A vulnerability was determined in Tenda AC10 16.03.10.13. Affected by this vulnerability is the... High Unreviewed
CVE-2025-12622 was published Nov 3, 2025
EasyFlow .NET and EasyFlow AiNet developed by Digiwin has a SQL Injection vulnerability, allowing... High Unreviewed
CVE-2025-12503 was published Nov 3, 2025
A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client... High Unreviewed
CVE-2025-62230 was published Oct 30, 2025
The privileged user could log in without sufficient credentials after enabling an application... High Unreviewed
CVE-2025-48397 was published Nov 3, 2025
A vulnerability was found in Kingdee Cloud-Starry-Sky Enterprise Edition up to 8.2. It has been... Moderate Unreviewed
CVE-2025-8516 was published Aug 4, 2025
A vulnerability has been found in Tenda AC8 16.03.34.06. This impacts an unknown function of the... High Unreviewed
CVE-2025-12618 was published Nov 3, 2025
A vulnerability was identified in fushengqian fuint up to... Low Unreviewed
CVE-2025-12623 was published Nov 3, 2025
Arbitrary code execution is possible due to improper validation of the file upload functionality... High Unreviewed
CVE-2025-48396 was published Nov 3, 2025
A vulnerability was found in Tenda A15 15.13.07.13. Affected is the function... High Unreviewed
CVE-2025-12619 was published Nov 3, 2025
A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds... High Unreviewed
CVE-2025-62231 was published Oct 30, 2025
A flaw was found in the X.Org X server and Xwayland when processing X11 Present extension... High Unreviewed
CVE-2025-62229 was published Oct 30, 2025
Zitadel May Bypass Second Authentication Factor High
CVE-2025-64103 was published for github.com/zitadel/zitadel/v2 (Go) Oct 29, 2025
livio-a IAM-marco
mffap
Credited to livio-a, IAM-marco, and mffap
Zitadel allows brute-forcing authentication factors High
CVE-2025-64102 was published for github.com/zitadel/zitadel/v2 (Go) Oct 29, 2025
livio-a IAM-marco
Credited to livio-a and IAM-marco
ZITADEL Vulnerable to Account Takeover via Malicious Forwarded Header Injection High
CVE-2025-64101 was published for github.com/zitadel/zitadel/v2 (Go) Oct 29, 2025
amit-laish livio-a
IAM-marco
Credited to amit-laish, livio-a, and IAM-marco
A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown... Moderate Unreviewed
CVE-2025-12616 was published Nov 3, 2025
A security vulnerability has been detected in PHPGurukul News Portal 1.0. The affected element is... Low Unreviewed
CVE-2025-12615 was published Nov 3, 2025
A flaw has been found in itsourcecode Billing System 1.0. This affects an unknown function of the... Moderate Unreviewed
CVE-2025-12617 was published Nov 3, 2025
Cross Site Scripting vulnerability in copyparty v.1.9.1 allows a local attacker to execute... High Unreviewed
CVE-2023-41471 was published Aug 29, 2025
A flaw was found in the libssh library. An out-of-bounds read can be triggered in the sftp_handle... Moderate Unreviewed
CVE-2025-5318 was published Jun 26, 2025
A vulnerability was found in CodeAstro Gym Management System 1.0. Affected by this issue is some... Moderate Unreviewed
CVE-2025-12609 was published Nov 3, 2025
A vulnerability was determined in CodeAstro Gym Management System 1.0. This affects an unknown... Moderate Unreviewed
CVE-2025-12610 was published Nov 3, 2025
A vulnerability was identified in Tenda AC21 16.03.08.16. This vulnerability affects the function... High Unreviewed
CVE-2025-12611 was published Nov 3, 2025
A security flaw has been discovered in Campcodes School Fees Payment Management System 1.0. This... Moderate Unreviewed
CVE-2025-12612 was published Nov 3, 2025
A security flaw has been discovered in itsourcecode Online Loan Management System 1.0. The... Moderate Unreviewed
CVE-2025-12608 was published Nov 3, 2025
A weakness has been identified in SourceCodester Best House Rental Management System 1.0.... Moderate Unreviewed
CVE-2025-12614 was published Nov 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database