GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,074
Composer 5,087
Erlang 40
GitHub Actions 38
Go 2,758
Maven 6,173
npm 4,364
NuGet 766
pip 4,132
Pub 12
RubyGems 961
Rust 1,070
Swift 45

Unreviewed advisories

All unreviewed 281,253

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,698 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

VitaraCharts 5.3.5 is vulnerable to Server-Side Request Forgery in fileLoader.jsp. Moderate Unreviewed

CVE-2025-57305 was published Oct 2, 2025

Apache Kylin Server-Side Request Forgery (SSRF) Vulnerability High

CVE-2025-61735 was published for org.apache.kylin:kylin (Maven) Oct 2, 2025

In Splunk Enterprise versions below 10.0.1, 9.4.4, 9.3.6 and 9.2.8, and Splunk Cloud Platform... High Unreviewed

CVE-2025-20371 was published Oct 1, 2025

The Block For Mailchimp – Easy Mailchimp Form Integration plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-10735 was published Oct 1, 2025

Dify v1.6.0 was discovered to contain a Server-Side Request Forgery (SSRF) via the component... Moderate Unreviewed

CVE-2025-56520 was published Sep 30, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... High Unreviewed

CVE-2025-34228 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... High Unreviewed

CVE-2025-34233 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... High Unreviewed

CVE-2025-34231 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... High Unreviewed

CVE-2025-34225 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... Moderate Unreviewed

CVE-2025-34229 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... Moderate Unreviewed

CVE-2025-34230 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... Moderate Unreviewed

CVE-2025-34232 was published Sep 29, 2025

A security flaw has been discovered in Tencent WeKnora 0.1.0. This impacts the function... Moderate Unreviewed

CVE-2025-11046 was published Sep 26, 2025

Server-Side Request Forgery (SSRF) vulnerability in silence Silencesoft RSS Reader allows Server... Moderate Unreviewed

CVE-2025-60181 was published Sep 26, 2025

Server-Side Request Forgery (SSRF) vulnerability in bdthemes ZoloBlocks allows Server Side... Moderate Unreviewed

CVE-2025-60161 was published Sep 26, 2025

The Snow Monkey theme for WordPress is vulnerable to Server-Side Request Forgery in all versions... Moderate Unreviewed

CVE-2025-10137 was published Sep 26, 2025

cors-anywhere vulnerable to server-side request forgery Critical

CVE-2020-36851 was published for cors-anywhere (npm) Sep 25, 2025

SAP BI Platform allows an attacker to modify the IP address of the LogonToken for the OpenDoc. On... Moderate Unreviewed

CVE-2025-42907 was published Sep 23, 2025

A restriction bypass vulnerability in is-localhost-ip could allow attackers to perform Server... Moderate Unreviewed

CVE-2025-9960 was published Sep 22, 2025

Server-Side Request Forgery (SSRF) vulnerability in publitio Publitio allows Server Side Request... Moderate Unreviewed

CVE-2025-58962 was published Sep 22, 2025

Server-Side Request Forgery (SSRF) vulnerability in SmartDataSoft DriCub allows Server Side... Moderate Unreviewed

CVE-2025-58005 was published Sep 22, 2025

Server-Side Request Forgery (SSRF) vulnerability in Alex Content Mask allows Server Side Request... Moderate Unreviewed

CVE-2025-58011 was published Sep 22, 2025

Server-Side Request Forgery (SSRF) vulnerability in Pratik Ghela MakeStories (for Google Web... Moderate Unreviewed

CVE-2025-57984 was published Sep 22, 2025

Server-Side Request Forgery (SSRF) vulnerability in Skimlinks Skimlinks Affiliate Marketing Tool... Moderate Unreviewed

CVE-2025-57943 was published Sep 22, 2025

Server-Side Request Forgery (SSRF) vulnerability in Binsaifullah Beaf allows Server Side Request... Moderate Unreviewed

CVE-2025-53461 was published Sep 22, 2025

Previous 1…5…68 Next

Previous 1 2 3 4 5 6 7 … 67 68 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,698 advisories