Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,119
NuGet
735
pip
3,941
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,116 advisories

Loading
Fiori app Manage Payment Blocks does not perform the necessary authorization checks, allowing an... Moderate Unreviewed
CVE-2025-42915 was published Sep 9, 2025
Due to insufficient CSRF protection in SAP Fiori App Manage Work Center Groups, an authenticated... Moderate Unreviewed
CVE-2025-42923 was published Sep 9, 2025
SAP NetWeaver (Service Data Download) allows an authenticated user to call a remote-enabled... Moderate Unreviewed
CVE-2025-42911 was published Sep 9, 2025
Due to the lack of randomness in assigning Object Identifiers in the SAP NetWeaver AS JAVA IIOP... Moderate Unreviewed
CVE-2025-42925 was published Sep 9, 2025
SAP HCM Approve Timesheets Fiori 2.0 application does not perform necessary authorization checks... Moderate Unreviewed
CVE-2025-42917 was published Sep 9, 2025
SAP HCM My Timesheet Fiori 2.0 application does not perform necessary authorization checks for an... Moderate Unreviewed
CVE-2025-42912 was published Sep 9, 2025
A security vulnerability has been detected in itsourcecode E-Logbook with Health Monitoring... Moderate Unreviewed
CVE-2025-10118 was published Sep 9, 2025
A weakness has been identified in SourceCodester Simple To-Do List System 1.0. Impacted is an... Moderate Unreviewed
CVE-2025-10117 was published Sep 9, 2025
A vulnerability was determined in D-Link DIR-823X up to 250416. Affected by this vulnerability is... Moderate Unreviewed
CVE-2025-10123 was published Sep 9, 2025
SAP Business Planning and Consolidation allows an authenticated standard user to call a function... Moderate Unreviewed
CVE-2025-42930 was published Sep 9, 2025
A vulnerability was determined in SiempreCMS up to 1.3.6. This affects an unknown part of the... Moderate Unreviewed
CVE-2025-10115 was published Sep 9, 2025
A flaw has been found in uverif up to 3.2. This affects the function addbatch of the file /admin... Moderate Unreviewed
CVE-2025-10121 was published Sep 9, 2025
A vulnerability was found in PHPGurukul Small CRM 4.0. Affected by this issue is some unknown... Moderate Unreviewed
CVE-2025-10114 was published Sep 9, 2025
IBM Concert Software 1.0.0 through 1.1.0 could allow a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2025-1761 was published Sep 9, 2025
A vulnerability was found in Campcodes Online Loan Management System 1.0. This vulnerability... Moderate Unreviewed
CVE-2025-10108 was published Sep 9, 2025
A vulnerability has been found in yanyutao0402 ChanCMS up to 3.3.1. This affects an unknown part... Moderate Unreviewed
CVE-2025-10106 was published Sep 9, 2025
A vulnerability was determined in Campcodes Online Loan Management System 1.0. This issue affects... Moderate Unreviewed
CVE-2025-10109 was published Sep 9, 2025
A weakness has been identified in itsourcecode Student Information Management System 1.0. The... Moderate Unreviewed
CVE-2025-10112 was published Sep 9, 2025
A security flaw has been discovered in itsourcecode Student Information Management System 1.0.... Moderate Unreviewed
CVE-2025-10111 was published Sep 9, 2025
A security vulnerability has been detected in itsourcecode Student Information Management System... Moderate Unreviewed
CVE-2025-10113 was published Sep 9, 2025
A vulnerability was identified in ChanCMS up to 3.3.1. Impacted is an unknown function of the... Moderate Unreviewed
CVE-2025-10110 was published Sep 9, 2025
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel... Moderate Unreviewed
CVE-2025-3212 was published Sep 8, 2025
A security flaw has been discovered in SourceCodester Pet Grooming Management Software 1.0. This... Moderate Unreviewed
CVE-2025-10085 was published Sep 8, 2025
An unrestricted file upload vulnerability in a Trend Micro Apex Central widget below version 8.0... Moderate Unreviewed
CVE-2025-47866 was published Jun 17, 2025
Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault... Moderate Unreviewed
CVE-2025-40929 was published Sep 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database