GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,792
Composer 4,866
Erlang 36
GitHub Actions 36
Go 2,491
Maven 5,913
npm 4,114
NuGet 735
pip 3,934
Pub 12
RubyGems 945
Rust 1,018
Swift 39

Unreviewed advisories

All unreviewed 268,899

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

137,051 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Stored cross-site scripting (XSS) vulnerability in Liferay Portal 7.4.3.45 through 7.4.3.128, and... Moderate Unreviewed

CVE-2025-43785 was published Sep 10, 2025

Pega Platform versions 7.1.0 to Infinity 24.2.2 are affected by a Stored XSS issue in a user... Moderate Unreviewed

CVE-2025-8681 was published Sep 10, 2025

Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Path Traversal: ... Moderate Unreviewed

CVE-2025-43886 was published Sep 10, 2025

A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated... Moderate Unreviewed

CVE-2025-20248 was published Sep 10, 2025

A vulnerability in the management interface access control list (ACL) processing feature in Cisco... Moderate Unreviewed

CVE-2025-20159 was published Sep 10, 2025

Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Plaintext... Moderate Unreviewed

CVE-2025-43938 was published Sep 10, 2025

A security vulnerability has been detected in ScriptAndTools Real Estate Management System 1.0.... Moderate Unreviewed

CVE-2025-9848 was published Sep 10, 2025

A vulnerability in the user profile component of Cisco Webex Meetings could have allowed an... Moderate Unreviewed

CVE-2025-20328 was published Sep 10, 2025

A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM ... Moderate Unreviewed

CVE-2025-20330 was published Sep 10, 2025

A weakness has been identified in ScriptAndTools Real Estate Management System 1.0. Impacted is... Moderate Unreviewed

CVE-2025-9847 was published Sep 10, 2025

A vulnerability was identified in 1000projects Beauty Parlour Management System 1.0. This affects... Moderate Unreviewed

CVE-2025-9919 was published Sep 10, 2025

Missing Encryption of Sensitive Data (CWE-311) in the Object Archive component in AxxonSoft Axxon... Moderate Unreviewed

CVE-2025-10227 was published Sep 10, 2025

Improper Authentication (CWE-287) in the LDAP authentication engine in AxxonSoft Axxon One 2.0.2... Moderate Unreviewed

CVE-2025-10224 was published Sep 10, 2025

Insertion of Sensitive Information into Log File (CWE-532) in the ARP Agent component in... Moderate Unreviewed

CVE-2025-10221 was published Sep 10, 2025

Exposure of Sensitive Information to an Unauthorized Actor (CWE-200) in the diagnostic dump... Moderate Unreviewed

CVE-2025-10222 was published Sep 10, 2025

Insufficient Session Expiration (CWE-613) in the Web Admin Panel in AxxonSoft Axxon One prior to... Moderate Unreviewed

CVE-2025-10223 was published Sep 10, 2025

A vulnerability was found in O2OA up to 10.0-410. Affected is an unknown function of the file ... Moderate Unreviewed

CVE-2025-9715 was published Sep 10, 2025

A flaw has been found in O2OA up to 10.0-410. Affected is an unknown function of the file ... Moderate Unreviewed

CVE-2025-9681 was published Sep 10, 2025

A vulnerability was detected in O2OA up to 10.0-410. This impacts an unknown function of the file... Moderate Unreviewed

CVE-2025-9680 was published Sep 10, 2025

A vulnerability was identified in GalleryVault Gallery Vault App up to 4.5.2 on Android. Affected... Moderate Unreviewed

CVE-2025-9695 was published Sep 10, 2025

A vulnerability was determined in Campcodes Advanced Online Voting System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-9694 was published Sep 10, 2025

Reflected Cross-Site Scripting (XSS) vulnerability in Azon Dominator. This vulnerability allows... Moderate Unreviewed

CVE-2025-40725 was published Sep 10, 2025

The Duplicate Page and Post plugin for WordPress is vulnerable to time-based SQL Injection via... Moderate Unreviewed

CVE-2025-6189 was published Sep 10, 2025

The Welcart e-Commerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-9367 was published Sep 10, 2025

The MyBrain Utilities plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2025-10126 was published Sep 10, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

137,051 advisories