GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,826
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,923
npm 4,122
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,020
Swift 39

Unreviewed advisories

All unreviewed 269,061

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103,244 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A potential insufficient access control vulnerability was reported in the Lenovo Dispatcher 3.0... High Unreviewed

CVE-2025-8061 was published Sep 11, 2025

An internal product security audit of Lenovo XClarity Orchestrator (LXCO) discovered the below... High Unreviewed

CVE-2025-8557 was published Sep 11, 2025

A potential vulnerability was reported in the Lenovo Wallpaper Client that could allow arbitrary... High Unreviewed

CVE-2025-9319 was published Sep 11, 2025

Daikin Security Gateway is vulnerable to an authorization bypass through a user-controlled key... High Unreviewed

CVE-2025-10127 was published Sep 11, 2025

A potential DLL hijacking vulnerability was discovered in Lenovo Browser during an internal... High Unreviewed

CVE-2025-9201 was published Sep 11, 2025

IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for... High Unreviewed

CVE-2025-36222 was published Sep 11, 2025

Out-of-bounds write in libsavsvc.so prior to SMR Sep-2025 Release 1 allows local attackers to... High Unreviewed

CVE-2025-21034 was published Sep 11, 2025

Insecure Direct Object Reference (IDOR) vulnerability in Liferay Portal 7.4.0 through 7.4.3.124,... High Unreviewed

CVE-2025-43790 was published Sep 11, 2025

[This CNA information record relates to multiple CVEs; the text explains which aspects... High Unreviewed

CVE-2025-58145 was published Sep 11, 2025

[This CNA information record relates to multiple CVEs; the text explains which aspects... High Unreviewed

CVE-2025-58144 was published Sep 11, 2025

The Time Tracker plugin for WordPress is vulnerable to unauthorized modification and loss of data... High Unreviewed

CVE-2025-9018 was published Sep 11, 2025

The User Meta – User Profile Builder and User management plugin plugin for WordPress is... High Unreviewed

CVE-2025-9693 was published Sep 11, 2025

Delta Electronics DIALink has an Directory Traversal Authentication Bypass Vulnerability. High Unreviewed

CVE-2025-58320 was published Sep 11, 2025

The Ultimate Classified Listings plugin for WordPress is vulnerable to Local File Inclusion in... High Unreviewed

CVE-2025-9874 was published Sep 11, 2025

A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server ... High Unreviewed

CVE-2025-9918 was published Sep 11, 2025

The Propovoice: All-in-One Client Management System plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-8422 was published Sep 11, 2025

The All in one Minifier plugin for WordPress is vulnerable to SQL Injection via the 'post_id'... High Unreviewed

CVE-2025-9073 was published Sep 11, 2025

The Catalog Importer, Scraper & Crawler plugin for WordPress is vulnerable to PHP code injection... High Unreviewed

CVE-2025-8417 was published Sep 11, 2025

The My WP Translate plugin for WordPress is vulnerable to unauthorized modification of data that... High Unreviewed

CVE-2025-8425 was published Sep 11, 2025

The Altiris Core Agent Updater package (AeXNSC.exe) is prone to an elevation of privileges... High Unreviewed

CVE-2025-9059 was published Sep 11, 2025

Use after free in Serviceworker in Google Chrome on Desktop prior to 140.0.7339.127 allowed a... High Unreviewed

CVE-2025-10200 was published Sep 10, 2025

Inappropriate implementation in Mojo in Google Chrome on Android, Linux, ChromeOS prior to 140.0... High Unreviewed

CVE-2025-10201 was published Sep 10, 2025

An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) An integer overflow... High Unreviewed

CVE-2025-57615 was published Sep 10, 2025

An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) A null pointer dereference... High Unreviewed

CVE-2025-57613 was published Sep 10, 2025

An issue was discovered in rust-ffmpeg 0.3.0 (after comit 5ac0527) Integer overflow and invalid... High Unreviewed

CVE-2025-57614 was published Sep 10, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

103,244 advisories