Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,119
NuGet
735
pip
3,941
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,079 advisories

Loading
A security flaw has been discovered in lmsys sglang 0.4.6. Affected by this vulnerability is the... Moderate Unreviewed
CVE-2025-10164 was published Sep 9, 2025
The Compress & Upload WordPress plugin before 1.0.5 does not properly validate uploaded files,... Moderate Unreviewed
CVE-2025-8889 was published Sep 9, 2025
TYPO3 CSV download feature information disclosure Moderate
CVE-2025-59019 was published for typo3/cms-backend (Composer) Sep 9, 2025
TYPO3 backend modules have Broken Access Control Moderate
CVE-2025-59017 was published for typo3/cms-backend (Composer) Sep 9, 2025
TYPO3 CMS exposes sensitive information in an error message Moderate
CVE-2025-59016 was published for typo3/cms-core (Composer) Sep 9, 2025
TYPO3 Bookmark Toolbar vulnerable to denial of service Moderate
CVE-2025-59014 was published for typo3/cms-backend (Composer) Sep 9, 2025
TYPO3 CMS has an open‑redirect vulnerability Moderate
CVE-2025-59013 was published for typo3/cms-core (Composer) Sep 9, 2025
A flaw has been found in SourceCodester Pet Management System 1.0. This impacts an unknown... Moderate Unreviewed
CVE-2025-10081 was published Sep 8, 2025
A vulnerability was detected in SourceCodester Online Polling System 1.0. Affected is an unknown... Moderate Unreviewed
CVE-2025-10078 was published Sep 8, 2025
A vulnerability has been found in SourceCodester Online Polling System 1.0. Affected is an... Moderate Unreviewed
CVE-2025-10082 was published Sep 8, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58989 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58990 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58983 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58985 was published Sep 9, 2025
A vulnerability was detected in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.5... Moderate Unreviewed
CVE-2025-5005 was published Sep 9, 2025
A flaw has been found in ZhenShi Mibro Fit App 1.6.3.17499 on Android. This impacts an unknown... Moderate Unreviewed
CVE-2025-5500 was published Sep 9, 2025
Missing Authorization vulnerability in recorp Export WP Page to Static HTML/CSS allows Accessing... Moderate Unreviewed
CVE-2025-58980 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58982 was published Sep 9, 2025
Missing Authorization vulnerability in frenify Categorify allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-59005 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58987 was published Sep 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Helmut Wandl Advanced Settings allows Cross... Moderate Unreviewed
CVE-2025-58975 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58988 was published Sep 9, 2025
Missing Authorization vulnerability in Equalize Digital Accessibility Checker by Equalize Digital... Moderate Unreviewed
CVE-2025-58976 was published Sep 9, 2025
Protection mechanism failure in Windows MapUrlToZone allows an unauthorized attacker to bypass a... Moderate Unreviewed
CVE-2025-54917 was published Sep 9, 2025
Missing Authorization vulnerability in WP Swings PDF Generator for WordPress allows Exploiting... Moderate Unreviewed
CVE-2025-58978 was published Sep 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database