GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,963
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,145
npm 4,336
NuGet 764
pip 4,111
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,846

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

133,714 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Creative Cloud Desktop versions 6.4.0.361 and earlier are affected by a Creation of Temporary... Moderate Unreviewed

CVE-2025-64896 was published Dec 9, 2025

MiniDVBLinux 5.4 contains a remote code execution vulnerability in the SVDRP protocol that allows... Moderate Unreviewed

CVE-2023-53774 was published Dec 9, 2025

Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the ... Moderate Unreviewed

CVE-2021-47729 was published Dec 9, 2025

A vulnerability was determined in itsourcecode Student Management System 1.0. This affects an... Moderate Unreviewed

CVE-2025-14337 was published Dec 9, 2025

OpenBMCS 2.4 contains a CSRF vulnerability that allows attackers to perform actions with... Moderate Unreviewed

CVE-2021-47702 was published Dec 9, 2025

OpenBMCS 2.4 contains an unauthenticated SSRF vulnerability that allows attackers to bypass... Moderate Unreviewed

CVE-2021-47703 was published Dec 9, 2025

STVS ProVision 5.9.10 contains a cross-site request forgery vulnerability that allows attackers... Moderate Unreviewed

CVE-2021-47723 was published Dec 9, 2025

IntelliChoice eFORCE Software Suite 2.5.9 contains a username enumeration vulnerability that... Moderate Unreviewed

CVE-2021-47717 was published Dec 9, 2025

HP System Event Utility and Omen Gaming Hub might allow execution of certain files outside of... Moderate Unreviewed

CVE-2025-11531 was published Dec 9, 2025

A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown... Moderate Unreviewed

CVE-2025-14334 was published Dec 9, 2025

A vulnerability was found in itsourcecode Student Management System 1.0. Affected by this issue... Moderate Unreviewed

CVE-2025-14336 was published Dec 9, 2025

A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-14335 was published Dec 9, 2025

Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows... Moderate Unreviewed

CVE-2025-64670 was published Dec 9, 2025

DNG SDK versions 1.7.0 and earlier are affected by an Integer Overflow or Wraparound... Moderate Unreviewed

CVE-2025-64894 was published Dec 9, 2025

An insufficient session expiration vulnerability [CWE-613] in Fortinet FortiOS 7.4.0, FortiOS 7.2... Moderate Unreviewed

CVE-2025-62631 was published Dec 9, 2025

User interface (ui) misrepresentation of critical information in Microsoft Exchange Server allows... Moderate Unreviewed

CVE-2025-64667 was published Dec 9, 2025

A use of password hash instead of password for authentication vulnerability [CWE-836]... Moderate Unreviewed

CVE-2025-64471 was published Dec 9, 2025

Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized... Moderate Unreviewed

CVE-2025-62473 was published Dec 9, 2025

Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny... Moderate Unreviewed

CVE-2025-62567 was published Dec 9, 2025

An unverified password change vulnerability [CWE-620] vulnerability in Fortinet FortiSOAR PaaS 7... Moderate Unreviewed

CVE-2025-59808 was published Dec 9, 2025

Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally. Moderate Unreviewed

CVE-2025-62465 was published Dec 9, 2025

Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally. Moderate Unreviewed

CVE-2025-62463 was published Dec 9, 2025

An improper access control vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.2,... Moderate Unreviewed

CVE-2025-59810 was published Dec 9, 2025

Out-of-bounds read in Windows Defender Firewall Service allows an authorized attacker to disclose... Moderate Unreviewed

CVE-2025-62468 was published Dec 9, 2025

MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed

CVE-2025-34401 was published Dec 9, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

133,714 advisories