GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,825
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,923
npm 4,122
NuGet 735
pip 3,942
Pub 12
RubyGems 945
Rust 1,020
Swift 39

Unreviewed advisories

All unreviewed 269,057

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,720 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security flaw has been discovered in lmsys sglang 0.4.6. Affected by this vulnerability is the... Moderate Unreviewed

CVE-2025-10164 was published Sep 9, 2025

Adobe Experience Manager versions 6.5.23.0 and earlier are affected by an Improper Input... Moderate Unreviewed

CVE-2025-54247 was published Sep 9, 2025

Adobe Experience Manager versions 6.5.23.0 and earlier are affected by an Improper Input... Moderate Unreviewed

CVE-2025-54250 was published Sep 9, 2025

Improper input validation in Windows Local Security Authority Subsystem Service (LSASS) allows an... Moderate Unreviewed

CVE-2025-53809 was published Sep 9, 2025

Improper Input Validation vulnerability in ABB 800xA Base. An attacker who successfully exploited... Moderate Unreviewed

CVE-2024-3036 was published Jun 21, 2024

An authorized user can cause a crash in the MongoDB Server through a specially crafted $group... Moderate Unreviewed

CVE-2025-10061 was published Sep 5, 2025

Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1... Moderate Unreviewed

CVE-2023-21472 was published Sep 5, 2025

Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1... Moderate Unreviewed

CVE-2023-21473 was published Sep 5, 2025

In multiple functions of AppOpsService.java, there is a possible add a large amount of app ops... Moderate Unreviewed

CVE-2025-48559 was published Sep 4, 2025

In setApplicationHiddenSettingAsUser of PackageManagerService.java, there is a possible way to... Moderate Unreviewed

CVE-2025-48538 was published Sep 4, 2025

In collectOps of AppOpsService.java, there is a possible way to cause permanent DoS due to... Moderate Unreviewed

CVE-2025-26429 was published Sep 4, 2025

In BroadcastController.java of registerReceiverWithFeatureTraced, there is a possible way to... Moderate Unreviewed

CVE-2025-26426 was published Sep 4, 2025

On Microchip RN4870 devices, when more than one consecutive PairReqNoInputNoOutput request is ... Moderate Unreviewed

CVE-2024-29155 was published Oct 16, 2024

, aka 'Microsoft Edge for Android Spoofing Vulnerability'. Moderate Unreviewed

CVE-2020-17153 was published May 24, 2022

, aka 'Azure DevOps Server Spoofing Vulnerability'. Moderate Unreviewed

CVE-2020-17135 was published May 24, 2022

, aka 'Azure DevOps Server and Team Foundation Services Spoofing Vulnerability'. Moderate Unreviewed

CVE-2020-17145 was published May 24, 2022

An input validation flaw in the 'ate' service of Tenda AC10 v4.0 firmware v16.03.10... Moderate Unreviewed

CVE-2025-57220 was published Aug 28, 2025

Improper input validation in firmware of some Solidigm DC Products may allow an attacker with... Moderate Unreviewed

CVE-2025-9195 was published Aug 28, 2025

A vulnerability classified as critical was found in Metasoft 美特软件 MetaCRM up to 6.4.2. This... Moderate Unreviewed

CVE-2025-7876 was published Jul 20, 2025

The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting... Moderate Unreviewed

CVE-2025-22491 was published Feb 28, 2025

IBM QRadar SOAR Plugin App 1.0.0 through 5.6.0 could allow a remote attacker to traverse... Moderate Unreviewed

CVE-2025-36114 was published Aug 20, 2025

A vulnerability was found in slackero phpwcms up to 1.9.45/1.10.8. It has been declared as... Moderate Unreviewed

CVE-2025-5497 was published Jun 3, 2025

HCL BigFix SaaS Authentication Service is affected by a Cross-Site Scripting (XSS) vulnerability.... Moderate Unreviewed

CVE-2025-52620 was published Aug 16, 2025

The elink – Embed Content plugin for WordPress is vulnerable to Malicious Redirect in all... Moderate Unreviewed

CVE-2025-7507 was published Aug 15, 2025

A vulnerability was determined in jeecgboot JimuReport up to 2.1.1. Affected by this issue is... Moderate Unreviewed

CVE-2025-8963 was published Aug 14, 2025

Previous1…189 Next

Previous 1 2 3 4 5 … 188 189 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,720 advisories