Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

747 advisories

Loading
Bottinelli Informatical Vedo Suite 2024.17 is vulnerable to Server-side Request Forgery (SSRF) in... Moderate Unreviewed
CVE-2025-51058 was published Aug 6, 2025
Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery Moderate
CVE-2025-4581 was published for com.liferay.portal:release.dxp.bom (Maven) Aug 9, 2025
Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery Moderate
CVE-2025-4655 was published for com.liferay.portal:release.dxp.bom (Maven) Aug 9, 2025
A vulnerability, which was classified as problematic, has been found in Vinades NukeViet up to 4... Moderate Unreviewed
CVE-2025-8772 was published Aug 9, 2025
Omnissa Workspace ONE UEM contains a Server-Side Request Forgery (SSRF) Vulnerability. A... Moderate Unreviewed
CVE-2025-25229 was published Aug 11, 2025
During an internal security assessment, a Server-Side Request Forgery (SSRF) vulnerability that... Moderate Unreviewed
CVE-2025-7622 was published Aug 12, 2025
Server-Side Request Forgery (SSRF) vulnerability in PressForward PressForward allows Server Side... Moderate Unreviewed
CVE-2025-28987 was published Aug 14, 2025
Server-Side Request Forgery (SSRF) vulnerability in kodeshpa Simplified allows Server Side... Moderate Unreviewed
CVE-2025-53241 was published Aug 14, 2025
The B Slider- Gutenberg Slider Block for WP plugin for WordPress is vulnerable to Server-Side... Moderate Unreviewed
CVE-2025-8680 was published Aug 15, 2025
Server-Side Request Forgery (SSRF) vulnerability in Drupal AI SEO Link Advisor allows Server Side... Moderate Unreviewed
CVE-2025-8675 was published Aug 15, 2025
WP Crontrol Authenticated (Administrator+) plugin vulnerable to Blind Server-Side Request Forgery Moderate
CVE-2025-8678 was published for johnbillion/wp-crontrol (Composer) Aug 19, 2025
jFriedli
Apache EventMesh Vulnerable to Server-Side Request Forgery in WebhookUtil.java Moderate
CVE-2024-39954 was published for org.apache.eventmesh:eventmesh-runtime (Maven) Aug 20, 2025
IBM Edge Application Manager 4.5 is vulnerable to server-side request forgery (SSRF). This may... Moderate Unreviewed
CVE-2025-1142 was published Aug 20, 2025
A server-side request forgery (SSRF) vulnerability exists in the Liferay DXP 2025.Q2.0 through... Moderate Unreviewed
CVE-2025-43747 was published Aug 21, 2025
A vulnerability was identified in wangsongyan wblog 0.0.1. This affects the function RestorePost... Moderate Unreviewed
CVE-2025-9395 was published Aug 25, 2025
A vulnerability was found in HuangDou UTCMS 9. This issue affects some unknown processing of the... Moderate Unreviewed
CVE-2025-9402 was published Aug 25, 2025
request-filtering-agent SSRF Bypass via HTTPS Requests to 127.0.0.1 Moderate
CVE-2025-57814 was published for request-filtering-agent (npm) Aug 25, 2025
ikkisoft
Rebuild v3.7.7 was discovered to contain a Server-Side Request Forgery (SSRF) via the type... Moderate Unreviewed
CVE-2024-46413 was published Aug 26, 2025
A vulnerability was found in kalcaddle kodbox 1.61. Affected by this vulnerability is an unknown... Moderate Unreviewed
CVE-2025-9414 was published Aug 26, 2025
Server-Side Request Forgery (SSRF) vulnerability in solacewp Solace Extra allows Server Side... Moderate Unreviewed
CVE-2025-58203 was published Aug 27, 2025
Server-Side Request Forgery (SSRF) vulnerability in vEnCa-X rajce allows Server Side Request... Moderate Unreviewed
CVE-2025-48364 was published Aug 28, 2025
Server-Side Request Forgery (SSRF) vulnerability in Chartbeat Chartbeat allows Server Side... Moderate Unreviewed
CVE-2025-53250 was published Aug 28, 2025
Next.js Improper Middleware Redirect Handling Leads to SSRF Moderate
CVE-2025-57822 was published for next (npm) Aug 29, 2025
medikoo
Server-Side Request Forgery (SSRF) vulnerability in kamleshyadav Exit Intent Popup allows Server... Moderate Unreviewed
CVE-2025-58641 was published Sep 3, 2025
Server-Side Request Forgery (SSRF) vulnerability in gfazioli WP Bannerize Pro allows Server Side... Moderate Unreviewed
CVE-2025-58615 was published Sep 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database