Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

27,458 advisories

Loading
Nagios XI versions prior to 2024R1 contain a missing access control vulnerability via the Web SSH... Critical Unreviewed
CVE-2023-7317 was published Oct 31, 2025
Nagios XI versions prior to 2024R1.1.3 did not invalidate all other active sessions for a user... Critical Unreviewed
CVE-2024-13996 was published Oct 31, 2025
Anheng Mingyu Operation and Maintenance Audit and Risk Control System up to 2023-08-10 contains a... Critical Unreviewed
CVE-2023-7325 was published Oct 31, 2025
Seeyon Zhiyuan OA Web Application System versions up to and including 7.0 SP1 improperly decode... Critical Unreviewed
CVE-2021-4461 was published Oct 31, 2025
Nagios XI versions prior to 5.6.14 contain an authenticated remote command execution... Critical Unreviewed
CVE-2020-36856 was published Oct 31, 2025
HCL DRYiCE AEX product is impacted by lack of input validation vulnerability in a particular web... Critical Unreviewed
CVE-2024-30110 was published Oct 30, 2025
Lack of Graceful Error Handling - HTTP 5xx ErrorThis issue affects BLU-IC2: through 1.19.5; BLU... Critical Unreviewed
CVE-2025-12516 was published Oct 30, 2025
Systemic Internal Server Errors - HTTP 500 ResponseThis issue affects BLU-IC2: through 1.19.5;... Critical Unreviewed
CVE-2025-12515 was published Oct 30, 2025
iib0011 omni-tools v0.4.0 is vulnerable to remote code execution via unsafe JSON deserialization. Critical Unreviewed
CVE-2025-50739 was published Oct 30, 2025
A critical severity vulnerability has been identified in the ALPR Manager role of Security Center... Critical Unreviewed
CVE-2025-43027 was published Oct 30, 2025
A Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability... Critical Unreviewed
CVE-2025-53883 was published Oct 30, 2025
DNN Insufficient Access Control - Image Upload allows for Site Content Overwrite Critical
CVE-2025-64095 was published for DNN.PLATFORM (NuGet) Oct 29, 2025
bdukes valadas
Credited to bdukes and valadas
win-cli-mcp-server resolveCommandPath Command Injection Remote Code Execution Vulnerability. This... Critical Unreviewed
CVE-2025-11202 was published Oct 29, 2025
D-Link DNS-343 ShareCenter devices running firmware versions up to and including 1.05 contain a... Critical Unreviewed
CVE-2018-25120 was published Oct 29, 2025
Resource Lacking AuthN.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 . Critical Unreviewed
CVE-2025-12476 was published Oct 29, 2025
Non-Compliant TLS Configuration.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19... Critical Unreviewed
CVE-2025-12478 was published Oct 29, 2025
Systemic Lack of Cross-Site Request Forgery (CSRF) Token Implementation.This issue affects BLU... Critical Unreviewed
CVE-2025-12479 was published Oct 29, 2025
Server Version Disclosure.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 . Critical Unreviewed
CVE-2025-12477 was published Oct 29, 2025
A vulnerability was found in code-projects Online Complaint Site 1.0. This issue affects some... Critical Unreviewed
CVE-2025-63622 was published Oct 29, 2025
A stack-based buffer overflow issue was discovered in the phddns client in Blu-Castle BCUM221E 1... Critical Unreviewed
CVE-2024-45162 was published Oct 29, 2025
WordPress plugin Contact Form CFDB7 versions up to and including 1.3.2 are affected by a pre... Critical Unreviewed
CVE-2025-4665 was published Oct 29, 2025
An issue was discovered in Dataphone A920 v2025.07.161103. A custom packet based on public... Critical Unreviewed
CVE-2025-61235 was published Oct 28, 2025
Protocol manipulation might lead to denial of service.This issue affects BLU-IC2: through 1.19.5;... Critical Unreviewed
CVE-2025-12423 was published Oct 28, 2025
Privilege Escalation through SUID-bit Binary.This issue affects BLU-IC2: through 1.19.5; BLU-IC4:... Critical Unreviewed
CVE-2025-12424 was published Oct 28, 2025
Local Privilege Escalation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 . Critical Unreviewed
CVE-2025-12425 was published Oct 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database