GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,874

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

133,735 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Simple Download Counter plugin for WordPress is vulnerable to Path Traversal in all versions... Moderate Unreviewed

CVE-2025-13677 was published Dec 10, 2025

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Input... Moderate Unreviewed

CVE-2025-61822 was published Dec 10, 2025

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Access... Moderate Unreviewed

CVE-2025-64897 was published Dec 10, 2025

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Insufficiently... Moderate Unreviewed

CVE-2025-64898 was published Dec 10, 2025

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Restriction... Moderate Unreviewed

CVE-2025-61823 was published Dec 10, 2025

IBM Planning Analytics Local 2.1.0 - 2.1.15 could disclose sensitive information about server... Moderate Unreviewed

CVE-2025-36437 was published Dec 10, 2025

MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed

CVE-2025-34425 was published Dec 10, 2025

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Restriction... Moderate Unreviewed

CVE-2025-61821 was published Dec 10, 2025

Creative Cloud Desktop versions 6.4.0.361 and earlier are affected by a Creation of Temporary... Moderate Unreviewed

CVE-2025-64896 was published Dec 9, 2025

MiniDVBLinux 5.4 contains a remote code execution vulnerability in the SVDRP protocol that allows... Moderate Unreviewed

CVE-2023-53774 was published Dec 9, 2025

Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the ... Moderate Unreviewed

CVE-2021-47729 was published Dec 9, 2025

OpenBMCS 2.4 contains an unauthenticated SSRF vulnerability that allows attackers to bypass... Moderate Unreviewed

CVE-2021-47703 was published Dec 9, 2025

A vulnerability was determined in itsourcecode Student Management System 1.0. This affects an... Moderate Unreviewed

CVE-2025-14337 was published Dec 9, 2025

OpenBMCS 2.4 contains a CSRF vulnerability that allows attackers to perform actions with... Moderate Unreviewed

CVE-2021-47702 was published Dec 9, 2025

STVS ProVision 5.9.10 contains a cross-site request forgery vulnerability that allows attackers... Moderate Unreviewed

CVE-2021-47723 was published Dec 9, 2025

IntelliChoice eFORCE Software Suite 2.5.9 contains a username enumeration vulnerability that... Moderate Unreviewed

CVE-2021-47717 was published Dec 9, 2025

A vulnerability was found in itsourcecode Student Management System 1.0. Affected by this issue... Moderate Unreviewed

CVE-2025-14336 was published Dec 9, 2025

A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-14335 was published Dec 9, 2025

HP System Event Utility and Omen Gaming Hub might allow execution of certain files outside of... Moderate Unreviewed

CVE-2025-11531 was published Dec 9, 2025

A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown... Moderate Unreviewed

CVE-2025-14334 was published Dec 9, 2025

Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows... Moderate Unreviewed

CVE-2025-64670 was published Dec 9, 2025

DNG SDK versions 1.7.0 and earlier are affected by an Integer Overflow or Wraparound... Moderate Unreviewed

CVE-2025-64894 was published Dec 9, 2025

An insufficient session expiration vulnerability [CWE-613] in Fortinet FortiOS 7.4.0, FortiOS 7.2... Moderate Unreviewed

CVE-2025-62631 was published Dec 9, 2025

User interface (ui) misrepresentation of critical information in Microsoft Exchange Server allows... Moderate Unreviewed

CVE-2025-64667 was published Dec 9, 2025

A use of password hash instead of password for authentication vulnerability [CWE-836]... Moderate Unreviewed

CVE-2025-64471 was published Dec 9, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

133,735 advisories