Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

11,171 advisories

Loading
Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and... Low Unreviewed
CVE-2025-64787 was published Dec 9, 2025
Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to... Low Unreviewed
CVE-2025-13743 was published Dec 9, 2025
Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and... Low Unreviewed
CVE-2025-64786 was published Dec 9, 2025
A vulnerability in NETGEAR Nighthawk R7000P routers lets an authenticated admin execute OS... Low Unreviewed
CVE-2025-12945 was published Dec 9, 2025
An improper access control vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6.6.4,... Low Unreviewed
CVE-2025-59923 was published Dec 9, 2025
A direct request ('forced browsing') vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6... Low Unreviewed
CVE-2025-57823 was published Dec 9, 2025
A post-authentication flaw in the network two-phase commit protocol used for cross-shard... Low Unreviewed
CVE-2025-14345 was published Dec 9, 2025
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP4).... Low Unreviewed
CVE-2025-40818 was published Dec 9, 2025
IBM QRadar SIEM 7.5 - 7.5.0 UP14 IF01 is affected by an information disclosure vulnerability... Low Unreviewed
CVE-2024-56464 was published Dec 9, 2025
A stored cross-site scripting vulnerability exists in the web management interface of the R.V.R.... Low Unreviewed
CVE-2025-65228 was published Dec 8, 2025
IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could... Low Unreviewed
CVE-2025-36102 was published Dec 9, 2025
Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a... Low Unreviewed
CVE-2025-59700 was published Dec 2, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Low Unreviewed
CVE-2024-12425 was published Jan 7, 2025
An issue in the Bluetooth Human Interface Device (HID) of JXL 9 Inch Car Android Double Din... Low Unreviewed
CVE-2025-63896 was published Dec 4, 2025
A command injection vulnerability has been reported to affect HybridDesk Station. If an attacker... Low Unreviewed
CVE-2025-44015 was published Aug 29, 2025
phpIPAM v1.7.3 contains a Cross-Site Request Forgery (CSRF) vulnerability in the database export... Low Unreviewed
CVE-2025-60912 was published Dec 8, 2025
Login credentials are inadvertently recorded in logs if a Syslog Server is configured in NETGEAR... Low Unreviewed
CVE-2025-12940 was published Nov 11, 2025
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of... Low Unreviewed
CVE-2025-66331 was published Dec 8, 2025
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of... Low Unreviewed
CVE-2025-66332 was published Dec 8, 2025
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of... Low Unreviewed
CVE-2025-66333 was published Dec 8, 2025
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of... Low Unreviewed
CVE-2025-66334 was published Dec 8, 2025
A security vulnerability has been detected in Rarlab RAR App up to 7.11 Build 127 on Android.... Low Unreviewed
CVE-2025-14111 was published Dec 6, 2025
A cross-site scripting (XSS) vulnerability has been reported to affect License Center. If... Low Unreviewed
CVE-2024-50406 was published Jun 6, 2025
Potential use of sensitive information in GET requests in Checkmk GmbH's Checkmk versions <2.4... Low Unreviewed
CVE-2025-32916 was published Oct 9, 2025
Potential stack buffer overwrite on the SFTP server side when receiving a malicious packet that... Low Unreviewed
CVE-2025-11624 was published Oct 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database