GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,513

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,436 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Lack of application manifest sanitation could lead to potential stored XSS.This issue affects BLU... Critical Unreviewed

CVE-2025-12001 was published Oct 21, 2025

An issue was discovered in L2 in Samsung Mobile Processor, Wearable Processor, and Modem Exynos... High Unreviewed

CVE-2025-26781 was published Oct 20, 2025

A vulnerability was found in ChurchCRM up to 5.18.0. This vulnerability affects unknown code of... Moderate Unreviewed

CVE-2025-11938 was published Oct 19, 2025

Due to improper input validation, a buffer overflow vulnerability is present in Zigbee EZSP... Critical Unreviewed

CVE-2025-8414 was published Oct 17, 2025

Improper input validation in the component /kafka/ui/serdes/CustomSerdeLoader.java of kafka-ui v0... Moderate Unreviewed

CVE-2025-60537 was published Oct 14, 2025

Improper input validation in Microsoft Exchange Server allows an unauthorized attacker to perform... High Unreviewed

CVE-2025-59248 was published Oct 14, 2025

Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute... High Unreviewed

CVE-2025-59228 was published Oct 14, 2025

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate... High Unreviewed

CVE-2025-59207 was published Oct 14, 2025

Improper input validation in Microsoft Windows Search Component allows an authorized attacker to... Moderate Unreviewed

CVE-2025-59198 was published Oct 14, 2025

Improper input validation in Microsoft Windows Search Component allows an unauthorized attacker... Moderate Unreviewed

CVE-2025-59190 was published Oct 14, 2025

Improper input validation in Windows Kernel allows an authorized attacker to elevate privileges... High Unreviewed

CVE-2025-59187 was published Oct 14, 2025

Improper input validation in Microsoft Windows Speech allows an authorized attacker to elevate... High Unreviewed

CVE-2025-58716 was published Oct 14, 2025

Improper input validation in Windows Kernel allows an unauthorized attacker to disclose... Moderate Unreviewed

CVE-2025-55679 was published Oct 14, 2025

Improper input validation in Windows Error Reporting allows an authorized attacker to elevate... High Unreviewed

CVE-2025-55692 was published Oct 14, 2025

A security issue was discovered within FactoryTalk® ViewPoint, allowing unauthenticated attackers... High Unreviewed

CVE-2025-9066 was published Oct 14, 2025

A vulnerability has been identified in SIMATIC S7-1200 CPU V1 family (incl. SIPLUS variants) (All... High Unreviewed

CVE-2011-20001 was published Oct 14, 2025

HCL Unica MaxAI Workbench is vulnerable to improper input validation. This allows attackers to... Low Unreviewed

CVE-2025-31995 was published Oct 13, 2025

Information disclosure may occur while processing the hypervisor log. Moderate Unreviewed

CVE-2025-27040 was published Oct 9, 2025

A flaw has been found in ILIAS up to 8.23/9.13/10.1. Affected by this issue is the function... Moderate Unreviewed

CVE-2025-11345 was published Oct 6, 2025

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function... Moderate Unreviewed

CVE-2025-11346 was published Oct 6, 2025

A vulnerability was found in LaChatterie Verger up to 1.2.10. This impacts the function... Moderate Unreviewed

CVE-2025-11273 was published Oct 5, 2025

OpenPLC Runtime v3 contains an input validation flaw in the /upload-program-action endpoint: the... High Unreviewed

CVE-2025-34226 was published Oct 3, 2025

E3 Site Supervisor Control (firmware version < 2.31F01) has a floor plan feature that allows for... High Unreviewed

CVE-2025-52544 was published Oct 1, 2025

E3 Site Supervisor Control (firmware version < 2.31F01) MGW contains an API call that lacks input... High Unreviewed

CVE-2025-52547 was published Oct 1, 2025

Rapid7 AppSpider Pro versions below 7.5.021 suffer from a project name validation vulnerability,... Low Unreviewed

CVE-2025-11195 was published Sep 30, 2025

Previous 12…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,436 advisories