GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

147 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A server-side request forgery security issue exists within Rockwell Automation ThinManager®... High Unreviewed

CVE-2025-9065 was published Sep 9, 2025

A vulnerability was found in Jinher OA up to 1.2. This impacts an unknown function of the file ... Moderate Unreviewed

CVE-2025-10092 was published Sep 8, 2025

A vulnerability has been found in Jinher OA up to 1.2. This affects an unknown function of the... Moderate Unreviewed

CVE-2025-10091 was published Sep 8, 2025

Local privilege escalation due to improper soft link handling. The following products are... High Unreviewed

CVE-2025-48963 was published Aug 28, 2025

In checkWhetherCallingAppHasAccess of DownloadProvider.java, there is a possible bypass of user... Moderate Unreviewed

CVE-2025-26417 was published Aug 27, 2025

In multiple functions of StatusHint.java and TelecomServiceImpl.java, there is a possible way to... Moderate Unreviewed

CVE-2025-0082 was published Aug 27, 2025

Sitecore Experience Platform (XP) prior to 8.0 Initial Release (rev. 141212) and Content... Moderate Unreviewed

CVE-2015-10142 was published Jul 25, 2025

A vulnerability was found in Jinher OA 1.2. It has been declared as problematic. This... Moderate Unreviewed

CVE-2025-7823 was published Jul 19, 2025

A vulnerability was found in Jinher OA 1.1. It has been rated as problematic. This issue affects... Moderate Unreviewed

CVE-2025-7824 was published Jul 19, 2025

A vulnerability was found in Jinher OA 1.0 and classified as problematic. Affected by this issue... Moderate Unreviewed

CVE-2025-7523 was published Jul 13, 2025

The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-6691 was published Jul 9, 2025

A vulnerability, which was classified as problematic, has been found in Fengoffice Feng Office 3... Moderate Unreviewed

CVE-2025-5877 was published Jun 9, 2025

CWE-610: Externally Controlled Reference to a Resource in Another Sphere vulnerability exists... High Unreviewed

CVE-2025-2875 was published May 14, 2025

External control of file name or path in Microsoft Defender for Endpoint allows an authorized... Moderate Unreviewed

CVE-2025-26684 was published May 13, 2025

Netskope Client on Mac OS is impacted by a vulnerability in which the postinstall script does not... Moderate Unreviewed

CVE-2024-13177 was published Apr 15, 2025

A vulnerability, which was classified as problematic, was found in zhangyanbo2007 youkefu up to 4... Moderate Unreviewed

CVE-2025-3241 was published Apr 4, 2025

A vulnerability, which was classified as problematic, has been found in crmeb_java up to 1.3.4.... Moderate Unreviewed

CVE-2025-2365 was published Mar 17, 2025

There is a local file inclusion vulnerability in ArcGIS Server 10.9.1 thru 11.3 that may allow a... High Unreviewed

CVE-2024-51961 was published Mar 3, 2025

A vulnerability, which was classified as problematic, has been found in ywoa up to 2024.07.03.... Moderate Unreviewed

CVE-2025-1225 was published Feb 12, 2025

An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an... High Unreviewed

CVE-2025-0111 was published Feb 12, 2025

A externally controlled reference to a resource in another sphere in Fortinet FortiManager before... Moderate Unreviewed

CVE-2022-23439 was published Jan 22, 2025

HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability. An attacker can... High Unreviewed

CVE-2024-42168 was published Jan 11, 2025

Incorrect control of environment variables in PostgreSQL PL/Perl allows an unprivileged database... High Unreviewed

CVE-2024-10979 was published Nov 14, 2024

A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions <= 20240410. This... Moderate Unreviewed

CVE-2024-5823 was published Oct 29, 2024

CVE-2024-45826 IMPACT Due to improper input validation, a path traversal and remote code... High Unreviewed

CVE-2024-45826 was published Sep 12, 2024

Previous1…6 Next

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

147 advisories