Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,868
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,116
NuGet
735
pip
3,941
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,055 advisories

Loading
Server-Side Request Forgery (SSRF) vulnerability in LiteSpeed Technologies LiteSpeed Cache. This... Moderate Unreviewed
CVE-2025-47437 was published Sep 9, 2025
Missing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure... Moderate Unreviewed
CVE-2025-55144 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-30875 was published Sep 9, 2025
Missing Authorization vulnerability in andy_moyle Church Admin. This issue affects Church Admin:... Moderate Unreviewed
CVE-2025-39553 was published Sep 9, 2025
SSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6,... Moderate Unreviewed
CVE-2025-55139 was published Sep 9, 2025
Reflected text injection in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure... Moderate Unreviewed
CVE-2025-55143 was published Sep 9, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in GoodBarber GoodBarber. This... Moderate Unreviewed
CVE-2025-39523 was published Sep 9, 2025
Missing Authorization vulnerability in Roland Murg WP Simple Booking Calendar. This issue affects... Moderate Unreviewed
CVE-2025-39541 was published Sep 9, 2025
Missing Authorization vulnerability in Sovica Target Video Easy Publish. This issue affects... Moderate Unreviewed
CVE-2025-32688 was published Sep 9, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... Moderate Unreviewed
CVE-2025-55226 was published Sep 9, 2025
Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker... Moderate Unreviewed
CVE-2025-54107 was published Sep 9, 2025
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-54096 was published Sep 9, 2025
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed
CVE-2025-54095 was published Sep 9, 2025
An unchecked return value in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy... Moderate Unreviewed
CVE-2025-55146 was published Sep 9, 2025
CSRF in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6,... Moderate Unreviewed
CVE-2025-8711 was published Sep 9, 2025
Improper Access Control vulnerability in Galaxy Store prior to version 4.5.53.6 allows local... Moderate Unreviewed
CVE-2023-21483 was published Sep 9, 2025
An OS command injection vulnerability exists in PLDT WiFi Router's Prolink PGN6401V Firmware 8.1... Moderate Unreviewed
CVE-2025-56498 was published Sep 9, 2025
SQL Injection vulnerability in FoxCMS v1.2.6 and before allows a remote attacker to execute... Moderate Unreviewed
CVE-2025-56435 was published Sep 9, 2025
Improper access control in Samsung Notes prior to version 4.4.30.63 allows physical attackers to... Moderate Unreviewed
CVE-2025-21037 was published Sep 9, 2025
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network... Moderate Unreviewed
CVE-2025-20270 was published Sep 9, 2025
A vulnerability in Cisco Webex Meetings could have allowed an unauthenticated, remote attacker to... Moderate Unreviewed
CVE-2025-20291 was published Sep 9, 2025
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network... Moderate Unreviewed
CVE-2025-20280 was published Sep 9, 2025
Improper access control in Samsung Notes prior to version 4.4.30.63 allows local privileged... Moderate Unreviewed
CVE-2025-21036 was published Sep 9, 2025
A security vulnerability has been detected in Campcodes Sales and Inventory System 1.0. Affected... Moderate Unreviewed
CVE-2025-9922 was published Sep 9, 2025
A security flaw has been discovered in Campcodes Recruitment Management System 1.0. This impacts... Moderate Unreviewed
CVE-2025-9920 was published Sep 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database