Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,866
Erlang
36
GitHub Actions
36
Go
2,491
Maven
5,000+
npm
4,111
NuGet
735
pip
3,933
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,039 advisories

Loading
Improper input validation in Windows Local Security Authority Subsystem Service (LSASS) allows an... Moderate Unreviewed
CVE-2025-53809 was published Sep 9, 2025
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall... Moderate Unreviewed
CVE-2025-53810 was published Sep 9, 2025
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-53806 was published Sep 9, 2025
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall... Moderate Unreviewed
CVE-2025-54104 was published Sep 9, 2025
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-54096 was published Sep 9, 2025
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-54097 was published Sep 9, 2025
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-54095 was published Sep 9, 2025
Access of resource using incompatible type ('type confusion') in Windows Defender Firewall... Moderate Unreviewed
CVE-2025-53808 was published Sep 9, 2025
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-53798 was published Sep 9, 2025
Missing Authorization vulnerability in spoddev2021 Spreadconnect. This issue affects... Moderate Unreviewed
CVE-2025-53291 was published Sep 9, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in GoodBarber GoodBarber. This... Moderate Unreviewed
CVE-2025-39523 was published Sep 9, 2025
Missing Authorization vulnerability in Roland Murg WP Simple Booking Calendar. This issue affects... Moderate Unreviewed
CVE-2025-39541 was published Sep 9, 2025
Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized... Moderate Unreviewed
CVE-2025-53804 was published Sep 9, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... Moderate Unreviewed
CVE-2025-47997 was published Sep 9, 2025
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-53797 was published Sep 9, 2025
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-53796 was published Sep 9, 2025
Missing Authorization vulnerability in awesomesupport Awesome Support. This issue affects Awesome... Moderate Unreviewed
CVE-2025-53340 was published Sep 9, 2025
Server-Side Request Forgery (SSRF) vulnerability in LiteSpeed Technologies LiteSpeed Cache. This... Moderate Unreviewed
CVE-2025-47437 was published Sep 9, 2025
Missing Authorization vulnerability in andy_moyle Church Admin. This issue affects Church Admin:... Moderate Unreviewed
CVE-2025-39553 was published Sep 9, 2025
Use of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to... Moderate Unreviewed
CVE-2025-53799 was published Sep 9, 2025
Missing Authorization vulnerability in Laborator Kalium. This issue affects Kalium: from n/a... Moderate Unreviewed
CVE-2025-53348 was published Sep 9, 2025
Missing Authorization vulnerability in Majestic Support Majestic Support. This issue affects... Moderate Unreviewed
CVE-2025-49860 was published Sep 9, 2025
Generation of error message containing sensitive information in Windows Kernel allows an... Moderate Unreviewed
CVE-2025-53803 was published Sep 9, 2025
CSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6,... Moderate Unreviewed
CVE-2025-8711 was published Sep 9, 2025
SSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6,... Moderate Unreviewed
CVE-2025-55139 was published Sep 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database