GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,816
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,920
npm 4,119
NuGet 735
pip 3,941
Pub 12
RubyGems 945
Rust 1,018
Swift 39

Unreviewed advisories

All unreviewed 268,962

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

126,567 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Uncontrolled recursion in XPath evaluation in libxml2 up to and including version 2.9.14 allows a... Moderate Unreviewed

CVE-2025-9714 was published Sep 10, 2025

A security vulnerability has been detected in yanyutao0402 ChanCMS 3.3.0. The affected element is... Moderate Unreviewed

CVE-2025-10211 was published Sep 10, 2025

Improper Access Control vulnerability in Liferay Portal 7.4.0 through 7.4.3.124, and Liferay DXP... Moderate Unreviewed

CVE-2025-43784 was published Sep 10, 2025

Reflected cross-site scripting (XSS) vulnerability in Liferay Portal 7.4.3.73 through 7.4.3.128,... Moderate Unreviewed

CVE-2025-43783 was published Sep 10, 2025

A security flaw has been discovered in Papermerge DMS up to 3.5.3. This issue affects some... Moderate Unreviewed

CVE-2025-10209 was published Sep 10, 2025

Pega Platform versions 7.1.0 to Infinity 24.2.2 are affected by a Stored XSS issue in a user... Moderate Unreviewed

CVE-2025-8681 was published Sep 10, 2025

Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow via the wifiTimeClose... Moderate Unreviewed

CVE-2025-57573 was published Sep 10, 2025

A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated... Moderate Unreviewed

CVE-2025-20248 was published Sep 10, 2025

A vulnerability in the management interface access control list (ACL) processing feature in Cisco... Moderate Unreviewed

CVE-2025-20159 was published Sep 10, 2025

Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Plaintext... Moderate Unreviewed

CVE-2025-43938 was published Sep 10, 2025

Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Path Traversal: ... Moderate Unreviewed

CVE-2025-43886 was published Sep 10, 2025

Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow via the QosList parameter... Moderate Unreviewed

CVE-2025-57570 was published Sep 10, 2025

oasys v1.1 is vulnerable to Directory Traversal in ProcedureController. Moderate Unreviewed

CVE-2025-29592 was published Sep 10, 2025

Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow via the portList parameter... Moderate Unreviewed

CVE-2025-57569 was published Sep 10, 2025

Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow. via the macFilterList... Moderate Unreviewed

CVE-2025-57571 was published Sep 10, 2025

Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow via the onlineList... Moderate Unreviewed

CVE-2025-57572 was published Sep 10, 2025

A weakness has been identified in ScriptAndTools Real Estate Management System 1.0. Impacted is... Moderate Unreviewed

CVE-2025-9847 was published Sep 10, 2025

A vulnerability was identified in 1000projects Beauty Parlour Management System 1.0. This affects... Moderate Unreviewed

CVE-2025-9919 was published Sep 10, 2025

A security vulnerability has been detected in ScriptAndTools Real Estate Management System 1.0.... Moderate Unreviewed

CVE-2025-9848 was published Sep 10, 2025

A vulnerability in the user profile component of Cisco Webex Meetings could have allowed an... Moderate Unreviewed

CVE-2025-20328 was published Sep 10, 2025

A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM ... Moderate Unreviewed

CVE-2025-20330 was published Sep 10, 2025

Missing Encryption of Sensitive Data (CWE-311) in the Object Archive component in AxxonSoft Axxon... Moderate Unreviewed

CVE-2025-10227 was published Sep 10, 2025

Improper Authentication (CWE-287) in the LDAP authentication engine in AxxonSoft Axxon One 2.0.2... Moderate Unreviewed

CVE-2025-10224 was published Sep 10, 2025

Insertion of Sensitive Information into Log File (CWE-532) in the ARP Agent component in... Moderate Unreviewed

CVE-2025-10221 was published Sep 10, 2025

Exposure of Sensitive Information to an Unauthorized Actor (CWE-200) in the diagnostic dump... Moderate Unreviewed

CVE-2025-10222 was published Sep 10, 2025

Previous 1…3…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

126,567 advisories