Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

126,629 advisories

Loading
Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow. via the macFilterList... Moderate Unreviewed
CVE-2025-57571 was published Sep 10, 2025
Tenda F3 V12.01.01.48_multi and after is vulnerable to Buffer Overflow via the QosList parameter... Moderate Unreviewed
CVE-2025-57570 was published Sep 10, 2025
Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Path Traversal: ... Moderate Unreviewed
CVE-2025-43886 was published Sep 10, 2025
Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Plaintext... Moderate Unreviewed
CVE-2025-43938 was published Sep 10, 2025
A vulnerability in the management interface access control list (ACL) processing feature in Cisco... Moderate Unreviewed
CVE-2025-20159 was published Sep 10, 2025
A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated... Moderate Unreviewed
CVE-2025-20248 was published Sep 10, 2025
oasys v1.1 is vulnerable to Directory Traversal in ProcedureController. Moderate Unreviewed
CVE-2025-29592 was published Sep 10, 2025
A security vulnerability has been detected in ScriptAndTools Real Estate Management System 1.0.... Moderate Unreviewed
CVE-2025-9848 was published Sep 10, 2025
A vulnerability was identified in 1000projects Beauty Parlour Management System 1.0. This affects... Moderate Unreviewed
CVE-2025-9919 was published Sep 10, 2025
A weakness has been identified in ScriptAndTools Real Estate Management System 1.0. Impacted is... Moderate Unreviewed
CVE-2025-9847 was published Sep 10, 2025
A vulnerability in the user profile component of Cisco Webex Meetings could have allowed an... Moderate Unreviewed
CVE-2025-20328 was published Sep 10, 2025
A vulnerability in the web-based management interface of Cisco Unified Communications Manager IM ... Moderate Unreviewed
CVE-2025-20330 was published Sep 10, 2025
Missing Encryption of Sensitive Data (CWE-311) in the Object Archive component in AxxonSoft Axxon... Moderate Unreviewed
CVE-2025-10227 was published Sep 10, 2025
Improper Authentication (CWE-287) in the LDAP authentication engine in AxxonSoft Axxon One 2.0.2... Moderate Unreviewed
CVE-2025-10224 was published Sep 10, 2025
Insufficient Session Expiration (CWE-613) in the Web Admin Panel in AxxonSoft Axxon One prior to... Moderate Unreviewed
CVE-2025-10223 was published Sep 10, 2025
Insertion of Sensitive Information into Log File (CWE-532) in the ARP Agent component in... Moderate Unreviewed
CVE-2025-10221 was published Sep 10, 2025
Exposure of Sensitive Information to an Unauthorized Actor (CWE-200) in the diagnostic dump... Moderate Unreviewed
CVE-2025-10222 was published Sep 10, 2025
A vulnerability was detected in O2OA up to 10.0-410. This impacts an unknown function of the file... Moderate Unreviewed
CVE-2025-9680 was published Sep 10, 2025
A flaw has been found in O2OA up to 10.0-410. Affected is an unknown function of the file ... Moderate Unreviewed
CVE-2025-9681 was published Sep 10, 2025
A vulnerability was determined in Campcodes Advanced Online Voting System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-9694 was published Sep 10, 2025
A vulnerability was found in O2OA up to 10.0-410. Affected is an unknown function of the file ... Moderate Unreviewed
CVE-2025-9715 was published Sep 10, 2025
A vulnerability was identified in GalleryVault Gallery Vault App up to 4.5.2 on Android. Affected... Moderate Unreviewed
CVE-2025-9695 was published Sep 10, 2025
Reflected Cross-Site Scripting (XSS) vulnerability in Azon Dominator. This vulnerability allows... Moderate Unreviewed
CVE-2025-40725 was published Sep 10, 2025
The PagBank / PagSeguro Connect para WooCommerce plugin for WordPress is vulnerable to SQL... Moderate Unreviewed
CVE-2025-10142 was published Sep 10, 2025
The MyBrain Utilities plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2025-10126 was published Sep 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database