Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,159 advisories

Loading
In bta_av_config_ind of bta_av_aact.cc, there is a possible out of bounds read due to type... Moderate Unreviewed
CVE-2023-35657 was published Sep 4, 2025
In multiple functions of UserController.java, there is a possible lock screen bypass due to a... Moderate Unreviewed
CVE-2025-0077 was published Sep 4, 2025
In onCreate of InstallStart.java, there is a possible permissions bypass due to improper input... Moderate Unreviewed
CVE-2025-22425 was published Sep 4, 2025
In multiple functions of GrantPermissionsActivity.java , there is a possible way to trick the... Moderate Unreviewed
CVE-2025-26420 was published Sep 4, 2025
In multiple locations, there is a possible Android/data access due to a path traversal error.... Moderate Unreviewed
CVE-2025-26427 was published Sep 4, 2025
In validateIpConfiguration of WifiConfigurationUtil.java, there is a possible way to trigger a... Moderate Unreviewed
CVE-2025-26423 was published Sep 4, 2025
In multiple functions of VpnManager.java, there is a possible cross-user data leak due to a logic... Moderate Unreviewed
CVE-2025-26424 was published Sep 4, 2025
In BroadcastController.java of registerReceiverWithFeatureTraced, there is a possible way to... Moderate Unreviewed
CVE-2025-26426 was published Sep 4, 2025
In dump of WindowManagerService.java, there is a possible way of running dumpsys without the... Moderate Unreviewed
CVE-2025-26422 was published Sep 4, 2025
In multiple functions of RoleService.java, there is a possible permission squatting vulnerability... Moderate Unreviewed
CVE-2025-26425 was published Sep 4, 2025
In multiple locations, there is a possible lock screen bypass due to a logic error in the code.... Moderate Unreviewed
CVE-2025-26421 was published Sep 4, 2025
A vulnerability was detected in Campcodes Hospital Management System 1.0. This affects an unknown... Moderate Unreviewed
CVE-2025-9746 was published Sep 4, 2025
A vulnerability was identified in HKritesh009 Grocery List Management Web App up to... Moderate Unreviewed
CVE-2025-9749 was published Sep 4, 2025
A security vulnerability has been detected in D-Link DIR-852 1.00CN B09. Impacted is the function... Moderate Unreviewed
CVE-2025-9752 was published Sep 4, 2025
A flaw has been found in Campcodes Online Hospital Management System 1.0. The impacted element is... Moderate Unreviewed
CVE-2025-9754 was published Sep 4, 2025
A vulnerability was detected in Campcodes Online Hospital Management System 1.0. The affected... Moderate Unreviewed
CVE-2025-9753 was published Sep 4, 2025
Presta Shop vulnerable to email enumeration Moderate
CVE-2025-51586 was published for prestashop/prestashop (Composer) Sep 4, 2025
Vaadin Platform possible file bypass via upload validation on the server-side Moderate
GHSA-c7v7-rqfm-f44j was published for com.vaadin:vaadin (Maven) Sep 4, 2025
Vaadin Flow Components possible file bypass via upload validation on the server-side Moderate
GHSA-94g8-xv23-7656 was published for com.vaadin:vaadin-upload-flow (Maven) Sep 4, 2025
Vaadin Framework possible file bypass via upload validation on the server-side Moderate
CVE-2025-9467 was published for com.vaadin:vaadin-server (Maven) Sep 4, 2025
IBM Jazz Foundation 7.0.2 through 7.0.2 iFix033, 7.0.3 through 7.0.3 iFix012, and 7.1.0 through 7... Moderate Unreviewed
CVE-2024-43184 was published Sep 4, 2025
Memos Vulnerable to Stored Cross-Site Scripting Moderate
CVE-2025-56761 was published for github.com/usememos/memos (Go) Sep 4, 2025
Memos Vulnerable to Path Traversal via the CreateResource Endpoint Moderate
CVE-2025-56760 was published for github.com/usememos/memos (Go) Sep 4, 2025
Securing externally available CAN wires can easily allow physical access to the CAN bus, allowing... Moderate Unreviewed
CVE-2025-6785 was published Sep 4, 2025
IBM Jazz Foundation 7.0.2 through 7.0.2 iFix033, 7.0.3 through 7.0.3 iFix012, and 7.1.0 through 7... Moderate Unreviewed
CVE-2025-25048 was published Sep 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database