GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

126,630 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In multiple locations, there is a possible permanent denial of service due to resource exhaustion... Moderate Unreviewed

CVE-2025-26449 was published Sep 5, 2025

NVIDIA HGX and DGX contain a vulnerability where a misconfiguration of the VBIOS could enable an... Moderate Unreviewed

CVE-2025-23301 was published Sep 5, 2025

NVIDIA HGX and DGX contain a vulnerability where a misconfiguration of the LS10 could enable an... Moderate Unreviewed

CVE-2025-23302 was published Sep 5, 2025

A security flaw has been discovered in projectworlds Travel Management System 1.0. The impacted... Moderate Unreviewed

CVE-2025-9928 was published Sep 5, 2025

NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver (PMD), where an attacker on a... Moderate Unreviewed

CVE-2025-23259 was published Sep 5, 2025

NVIDIA ConnectX contains a vulnerability in the management interface, where an attacker with... Moderate Unreviewed

CVE-2025-23262 was published Sep 5, 2025

NVIDIA Cumulus Linux and NVOS products contain a vulnerability, where hashed user passwords are... Moderate Unreviewed

CVE-2025-23261 was published Sep 5, 2025

Improper access control in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to... Moderate Unreviewed

CVE-2025-21031 was published Sep 5, 2025

A vulnerability was identified in projectworlds Travel Management System 1.0. The affected... Moderate Unreviewed

CVE-2025-9927 was published Sep 5, 2025

Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1... Moderate Unreviewed

CVE-2023-21473 was published Sep 5, 2025

Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1... Moderate Unreviewed

CVE-2023-21472 was published Sep 5, 2025

A vulnerability was determined in itsourcecode Sports Management System 1.0. This affects an... Moderate Unreviewed

CVE-2025-9767 was published Sep 5, 2025

ModStartCMS v9.5.0 has an arbitrary file write vulnerability, which allows attackers to write... Moderate Unreviewed

CVE-2025-55824 was published Sep 5, 2025

A security vulnerability has been detected in Portabilis i-Educar up to 2.10. The impacted... Moderate Unreviewed

CVE-2025-10012 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58883 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58876 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58880 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58884 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58887 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58886 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58882 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in usamafarooq Woocommerce Gifts Product allows... Moderate Unreviewed

CVE-2025-58878 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2025-8695 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Simasicher SimaCookie allows Stored XSS. This... Moderate Unreviewed

CVE-2025-58869 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-58870 was published Sep 5, 2025

Previous 1…19…400 Next

Previous 1 2 … 17 18 19 20 21 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

126,630 advisories