Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,752
Maven
5,000+
npm
4,357
NuGet
765
pip
4,121
Pub
12
RubyGems
961
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

134,508 advisories

Loading
The issue was addressed with improved checks. This issue is fixed in macOS Tahoe 26.1. An app may... Moderate Unreviewed
CVE-2025-43471 was published Dec 12, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop... Moderate Unreviewed
CVE-2025-38647 was published Aug 22, 2025
This issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.8.3, macOS... Moderate Unreviewed
CVE-2025-43530 was published Dec 12, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in macOS Sonoma... Moderate Unreviewed
CVE-2025-43538 was published Dec 12, 2025
A weakness has been identified in CTCMS Content Management System up to 2.1.2. This affects an... Moderate Unreviewed
CVE-2025-14731 was published Dec 16, 2025
A vulnerability was identified in CTCMS Content Management System up to 2.1.2. The affected... Moderate Unreviewed
CVE-2025-14729 was published Dec 16, 2025
Hitachi Vantara Pentaho Data Integration and Analytics Community Dashboard Framework prior to... Moderate Unreviewed
CVE-2025-9122 was published Dec 16, 2025
A security flaw has been discovered in CTCMS Content Management System up to 2.1.2. The impacted... Moderate Unreviewed
CVE-2025-14730 was published Dec 16, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43470 was published Dec 12, 2025
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Tahoe 26.1.... Moderate Unreviewed
CVE-2025-43406 was published Dec 12, 2025
NULL pointer dereference in TagSection.keys() in python-apt on APT-based Linux systems allows a... Moderate Unreviewed
CVE-2025-6966 was published Dec 5, 2025
A vulnerability in Apache Airflow allowed authenticated UI users to view secret values in... Moderate Unreviewed
CVE-2025-66388 was published Dec 15, 2025
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43497 was published Dec 12, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43351 was published Dec 12, 2025
A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in... Moderate Unreviewed
CVE-2025-43393 was published Dec 12, 2025
In the Linux kernel, the following vulnerability has been resolved: fs/aio: Check IOCB_AIO_RW... Moderate Unreviewed
CVE-2024-35815 was published May 17, 2024
A vulnerability, which was classified as problematic, was found in sproctor php-calendar. This... Moderate Unreviewed
CVE-2022-4455 was published Dec 13, 2022
In the Linux kernel, the following vulnerability has been resolved: mmc: core: Avoid negative... Moderate Unreviewed
CVE-2024-35813 was published May 17, 2024
Xlight FTP Server 3.9.3.6 contains a stack buffer overflow vulnerability in the 'Execute Program'... Moderate Unreviewed
CVE-2023-53886 was published Dec 15, 2025
A vulnerability was determined in vion707 DMadmin up to 3403cafdb42537a648c30bf8cbc8148ec60437d1.... Moderate Unreviewed
CVE-2025-14722 was published Dec 15, 2025
Member Login Script 3.3 contains a client-side desynchronization vulnerability that allows... Moderate Unreviewed
CVE-2023-53878 was published Dec 15, 2025
Blackcat CMS 1.4 contains a stored cross-site scripting vulnerability that allows authenticated... Moderate Unreviewed
CVE-2023-53891 was published Dec 15, 2025
Lucee 5.4.2.17 contains a reflected cross-site scripting vulnerability that allows authenticated... Moderate Unreviewed
CVE-2023-53880 was published Dec 15, 2025
JLex GuestBook 1.6.4 contains a reflected cross-site scripting vulnerability in the 'q' URL... Moderate Unreviewed
CVE-2023-53882 was published Dec 15, 2025
NVClient 5.0 contains a stack buffer overflow vulnerability in the user configuration contact... Moderate Unreviewed
CVE-2023-53879 was published Dec 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database