Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,494
Maven
5,000+
npm
4,129
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,348 advisories

Loading
A vulnerability was found in BoyunCMS up to 1.4.20 and classified as critical. Affected by this... Moderate Unreviewed
CVE-2025-7100 was published Jul 7, 2025
Incorrect access control in the web service of Audi UTR 2.0 Universal Traffic Recorder 2.0 allows... High Unreviewed
CVE-2025-45584 was published Sep 12, 2025
The MongoDB Windows installation MSI may leave ACLs unset on custom installation directories... High Unreviewed
CVE-2025-10491 was published Sep 15, 2025
A vulnerability was detected in Campcodes Online Job Finder System 1.0. The impacted element is... Moderate Unreviewed
CVE-2025-10447 was published Sep 15, 2025
A security vulnerability has been detected in SourceCodester Pet Grooming Management Software 1.0... Moderate Unreviewed
CVE-2025-10428 was published Sep 15, 2025
A weakness has been identified in SourceCodester Pet Grooming Management Software 1.0. This... Moderate Unreviewed
CVE-2025-10427 was published Sep 15, 2025
A vulnerability was identified in 1000projects Online Student Project Report Submission and... Moderate Unreviewed
CVE-2025-10425 was published Sep 15, 2025
A vulnerability was determined in 1000projects Online Student Project Report Submission and... Moderate Unreviewed
CVE-2025-10424 was published Sep 15, 2025
A security flaw has been discovered in fcba_zzm ics-park Smart Park Management System 2.0. This... Moderate Unreviewed
CVE-2025-10398 was published Sep 14, 2025
A security flaw has been discovered in eCharge Hardy Barth Salia PLCC 2.2.0. This issue affects... Moderate Unreviewed
CVE-2025-10371 was published Sep 13, 2025
A weakness has been identified in xuhuisheng lemon up to 1.13.0. This affects the function... Moderate Unreviewed
CVE-2025-9406 was published Aug 25, 2025
OpenSynergy BlueSDK (aka Blue SDK) through 6.x mishandles a function call. The specific flaw... High Unreviewed
CVE-2024-45432 was published Sep 12, 2025
A weakness has been identified in Emlog Pro up to 2.5.18. This issue affects some unknown... Moderate Unreviewed
CVE-2025-9173 was published Aug 20, 2025
A security vulnerability has been detected in Emlog Pro up to 2.5.18. This affects an unknown... Moderate Unreviewed
CVE-2025-9296 was published Aug 21, 2025
Inappropriate implementation in Mojo in Google Chrome on Android, Linux, ChromeOS prior to 140.0... High Unreviewed
CVE-2025-10201 was published Sep 10, 2025
A vulnerability in the management interface access control list (ACL) processing feature in Cisco... Moderate Unreviewed
CVE-2025-20159 was published Sep 10, 2025
A weakness has been identified in ScriptAndTools Real Estate Management System 1.0. Impacted is... Moderate Unreviewed
CVE-2025-9847 was published Sep 10, 2025
An issue was discovered in litmusautomation litmus-mcp-server thru 0.0.1 allowing unauthorized... High Unreviewed
CVE-2025-56405 was published Sep 10, 2025
Vite middleware may serve files starting with the same name with the public directory Low
CVE-2025-58751 was published for vite (npm) Sep 9, 2025
orihjfrog lukeed
Vite's `server.fs` settings were not applied to HTML files Low
CVE-2025-58752 was published for vite (npm) Sep 9, 2025
orihjfrog dominikg
A flaw has been found in SourceCodester Pet Management System 1.0. This impacts an unknown... Moderate Unreviewed
CVE-2025-10081 was published Sep 8, 2025
Improper access control in Windows MultiPoint Services allows an authorized attacker to elevate... High Unreviewed
CVE-2025-54116 was published Sep 9, 2025
Improper access control in Azure Windows Virtual Machine Agent allows an authorized attacker to... High Unreviewed
CVE-2025-49692 was published Sep 9, 2025
Improper access control in Windows Hyper-V allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-54098 was published Sep 9, 2025
A vulnerability was identified in SiempreCMS up to 1.3.6. This vulnerability affects unknown code... Moderate Unreviewed
CVE-2025-10116 was published Sep 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database