GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,615
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,078

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

142,546 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Omnissa Workspace ONE UEM contains an observable response discrepancy vulnerability. A malicious... Moderate Unreviewed

CVE-2025-25236 was published Nov 12, 2025

N-central < 2025.4 can generate sessionIDs for unauthenticated users This issue affects N... Moderate Unreviewed

CVE-2025-9316 was published Nov 12, 2025

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through... Moderate Unreviewed

CVE-2025-59089 was published Nov 12, 2025

Cross Site Scripting (XSS) vulnerability in CrushFTP 11.3.6_48. The Web-Based Server has a... Moderate Unreviewed

CVE-2025-63419 was published Nov 12, 2025

Cross-site scripting (XSS) vulnerability in the generate report functionality in Rarlab WinRAR 7... Moderate Unreviewed

CVE-2025-52331 was published Nov 12, 2025

Cross Site Scripting vulnerability in CentralSquare Community Development 19.5.7 via form fields. Moderate Unreviewed

CVE-2025-59491 was published Nov 12, 2025

A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greeter allows escalation... Moderate Unreviewed

CVE-2025-62876 was published Nov 12, 2025

CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that... Moderate Unreviewed

CVE-2025-11566 was published Nov 12, 2025

The Specific Content For Mobile – Customize the mobile version without redirections plugin for... Moderate Unreviewed

CVE-2025-11454 was published Nov 12, 2025

Reflected cross-site scripting vulnerability in Apache OFBiz. This issue affects Apache OFBiz:... Moderate Unreviewed

CVE-2025-61623 was published Nov 12, 2025

Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache... Moderate Unreviewed

CVE-2025-64407 was published Nov 12, 2025

Origin Validation Error in Kibana can lead to Server-Side Request Forgery via a forged Origin... Moderate Unreviewed

CVE-2025-37734 was published Nov 12, 2025

The WP Import – Ultimate CSV XML Importer for WordPress plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-12732 was published Nov 12, 2025

An out-of-bounds Write vulnerability in Apache OpenOffice could allow an attacker to craft a... Moderate Unreviewed

CVE-2025-64406 was published Nov 12, 2025

Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache... Moderate Unreviewed

CVE-2025-64402 was published Nov 12, 2025

The a+HRD and a+HCM developed by aEnrich has a Stored Cross-Site Scripting vulnerability,... Moderate Unreviewed

CVE-2025-12872 was published Nov 12, 2025

The a+HRD developed by aEnrich has a Stored Cross-Site Scripting vulnerability, allowing remote... Moderate Unreviewed

CVE-2025-12869 was published Nov 12, 2025

The MembershipWorks – Membership, Events & Directory plugin for WordPress is vulnerable to Stored... Moderate Unreviewed

CVE-2025-12018 was published Nov 12, 2025

The Alt Text Generator AI – Auto Generate & Bulk Update Alt Texts For Images plugin for WordPress... Moderate Unreviewed

CVE-2025-12113 was published Nov 12, 2025

The Asgaros Forum plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-12901 was published Nov 12, 2025

The GeoDirectory – WP Business Directory Plugin and Classified Listings Directory plugin for... Moderate Unreviewed

CVE-2025-12833 was published Nov 12, 2025

The Team Members Showcase WordPress plugin before 3.5.0 does not sanitize and escape a parameter... Moderate Unreviewed

CVE-2025-11560 was published Nov 12, 2025

The Wishlist and Save for later for Woocommerce plugin for WordPress is vulnerable to Insecure... Moderate Unreviewed

CVE-2025-12087 was published Nov 12, 2025

A health check port on Zscaler Client Connector on Windows, versions 4.6 < 4.6.0.216 and 4.7 < 4... Moderate Unreviewed

CVE-2025-54983 was published Nov 12, 2025

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed

CVE-2025-43205 was published Nov 12, 2025

Previous 1…3…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

142,546 advisories