Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,121
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,882 advisories

Loading
PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-6652 was published Jun 26, 2025
PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-6648 was published Jun 26, 2025
PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-6643 was published Jun 26, 2025
PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-6649 was published Jun 26, 2025
PDF-XChange Editor U3D File Parsing Use-After-Free Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-6646 was published Jun 26, 2025
PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-6641 was published Jun 26, 2025
Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected... Low Unreviewed
CVE-2025-49549 was published Jun 26, 2025
Successful exploitation of the vulnerability could allow an attacker to intercept data and... Low Unreviewed
CVE-2025-48463 was published Jun 26, 2025
A vulnerability, which was classified as problematic, was found in xxyopen/201206030 novel-plus... Low Unreviewed
CVE-2025-6534 was published Jun 26, 2025
A vulnerability, which was classified as problematic, was found in 70mai M300 up to 20250611.... Low Unreviewed
CVE-2025-6527 was published Jun 26, 2025
A vulnerability, which was classified as problematic, has been found in 70mai M300 up to 20250611... Low Unreviewed
CVE-2025-6526 was published Jun 26, 2025
An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0... Low Unreviewed
CVE-2025-5846 was published Jun 26, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.11.5, 18... Low Unreviewed
CVE-2025-2938 was published Jun 26, 2025
A vulnerability classified as problematic has been found in 70mai 1S up to 20250611. This affects... Low Unreviewed
CVE-2025-6524 was published Jun 23, 2025
PEAK-System Driver PCANFD_ADD_FILTERS Time-Of-Check Time-Of-Use Information Disclosure... Low Unreviewed
CVE-2025-6217 was published Jun 23, 2025
ClickHouse 25.7.1.557 allows low-privileged users to execute shell commands by querying existing... Low Unreviewed
CVE-2025-52969 was published Jun 23, 2025
xdg-open in xdg-utils through 1.2.1 can send requests containing SameSite=Strict cookies, which... Low Unreviewed
CVE-2025-52968 was published Jun 23, 2025
Vulnerability in PointCloudLibrary PCL (surface/src/3rdparty/opennurbs modules). This... Low Unreviewed
CVE-2025-52937 was published Jun 23, 2025
Yealink YMCS RPS before 2025-06-04 lacks SN verification attempt limits, enabling brute-force... Low Unreviewed
CVE-2025-52916 was published Jun 22, 2025
An issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.3.6... Low Unreviewed
CVE-2023-5600 was published Jun 20, 2025
A vulnerability has been identified in Keycloak that could lead to unauthorized information... Low Unreviewed
CVE-2025-5416 was published Jun 20, 2025
A flaw was found in the GIF parser of GdkPixbuf’s LZW decoder. When an invalid symbol is... Low Unreviewed
CVE-2025-6199 was published Jun 17, 2025
A vulnerability, which was classified as problematic, has been found in TOTOLINK T10 4.1.8cu.5207... Low Unreviewed
CVE-2025-6139 was published Jun 16, 2025
A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML... Low Unreviewed
CVE-2025-6170 was published Jun 16, 2025
A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow... Low Unreviewed
CVE-2025-24388 was published Jun 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database