Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

293,070 advisories

Loading
A vulnerability was found in D-Link DI-8100G, DI-8200G and DI-8003G 17.12.20A1/19.12.10A1.... Moderate Unreviewed
CVE-2025-10441 was published Sep 15, 2025
Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.10.x <= 10.10.1, 10... Moderate Unreviewed
CVE-2025-9078 was published Sep 15, 2025
Mattermost versions 10.5.x <= 10.5.9 fail to properly validate redirect URLs which allows... Low Unreviewed
CVE-2025-9084 was published Sep 15, 2025
A vulnerability was determined in Tenda AC9 and AC15 15.03.05.14. This affects the function... Moderate Unreviewed
CVE-2025-10442 was published Sep 15, 2025
The Chaos Controller Manager in Chaos Mesh exposes a GraphQL debugging server without... High Unreviewed
CVE-2025-59358 was published Sep 15, 2025
Stored cross-site scripting (XSS) vulnerability in Liferay Portal 7.4.0 through 7.4.3.111, and... Moderate Unreviewed
CVE-2025-43794 was published Sep 15, 2025
Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail to validate the... High Unreviewed
CVE-2025-9072 was published Sep 15, 2025
A vulnerability was identified in Tenda AC9 and AC15 15.03.05.14/15.03.05.18. This vulnerability... High Unreviewed
CVE-2025-10443 was published Sep 15, 2025
Stored cross-site scripting vulnerability in M-Files Hubshare before version 25.8 allows... High Unreviewed
CVE-2025-9826 was published Sep 15, 2025
The killProcesses mutation in Chaos Controller Manager is vulnerable to OS command injection. In... Critical Unreviewed
CVE-2025-59360 was published Sep 15, 2025
A security flaw has been discovered in Campcodes Online Job Finder System 1.0. This issue affects... Moderate Unreviewed
CVE-2025-10444 was published Sep 15, 2025
The cleanIptables mutation in Chaos Controller Manager is vulnerable to OS command injection. In... Critical Unreviewed
CVE-2025-59361 was published Sep 15, 2025
The cleanTcs mutation in Chaos Controller Manager is vulnerable to OS command injection. In... Critical Unreviewed
CVE-2025-59359 was published Sep 15, 2025
Mattermost versions 10.10.x <= 10.10.1 fail to properly sanitize user data during shared channel... Moderate Unreviewed
CVE-2025-9076 was published Sep 15, 2025
A weakness has been identified in Campcodes Computer Sales and Inventory System 1.0. The impacted... Moderate Unreviewed
CVE-2025-10436 was published Sep 15, 2025
A vulnerability has been found in D-Link DI-8100, DI-8100G, DI-8200, DI-8200G, DI-8003 and DI... Moderate Unreviewed
CVE-2025-10440 was published Sep 15, 2025
A vulnerability was found in Tenda AC1206 15.03.06.23. This vulnerability affects the function... High Unreviewed
CVE-2025-10432 was published Sep 15, 2025
A vulnerability was identified in IbuyuCMS up to 2.6.3. Impacted is an unknown function of the... Moderate Unreviewed
CVE-2025-10434 was published Sep 15, 2025
A security flaw has been discovered in Campcodes Computer Sales and Inventory System 1.0. The... Moderate Unreviewed
CVE-2025-10435 was published Sep 15, 2025
During a short time frame while the device is booting an unauthenticated remote attacker can send... Moderate Unreviewed
CVE-2025-41713 was published Sep 15, 2025
A flaw has been found in SourceCodester Pet Grooming Management Software 1.0. Affected by this... Moderate Unreviewed
CVE-2025-10430 was published Sep 15, 2025
A vulnerability was determined in 1Panel-dev MaxKB up to 2.0.2/2.1.0. This issue affects some... Moderate Unreviewed
CVE-2025-10433 was published Sep 15, 2025
A vulnerability has been found in SourceCodester Pet Grooming Management Software 1.0. This... Moderate Unreviewed
CVE-2025-10431 was published Sep 15, 2025
In guix-daemon in GNU Guix before 1618ca7, a content-addressed-mirrors file can be written to... Moderate Unreviewed
CVE-2025-59378 was published Sep 15, 2025
A weakness has been identified in SourceCodester Pet Grooming Management Software 1.0. This... Moderate Unreviewed
CVE-2025-10427 was published Sep 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database