GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,915

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

301,518 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The patient prescription viewing functionality in his_doc_view_single_patient.php of rickxy... Unknown Unreviewed

CVE-2025-63497 was published Nov 10, 2025

Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw... Critical Unreviewed

CVE-2025-12480 was published Nov 10, 2025

In JetBrains YouTrack before 2025.3.104432 insecure Junie configuration could lead to data... Moderate Unreviewed

CVE-2025-64690 was published Nov 10, 2025

In JetBrains Hub before 2025.3.104432 information disclosure was possible via the Users API Moderate Unreviewed

CVE-2025-64683 was published Nov 10, 2025

In JetBrains YouTrack before 2025.3.104432 improper access control allowed modify MCP tool logic Moderate Unreviewed

CVE-2025-64687 was published Nov 10, 2025

In JetBrains YouTrack before 2025.3.104432 missing TLS certificate validation enabled data... High Unreviewed

CVE-2025-64685 was published Nov 10, 2025

In JetBrains YouTrack before 2025.3.104432 missing VCS URL validation allowed delegation to... High Unreviewed

CVE-2025-64688 was published Nov 10, 2025

The send_message.php endpoint in SourceCodester Simple Public Chat Room 1.0 is vulnerable to... Unknown Unreviewed

CVE-2025-63710 was published Nov 10, 2025

A Cross-Site Request Forgery (CSRF) vulnerability in the SourceCodester Client Database... High Unreviewed

CVE-2025-63711 was published Nov 10, 2025

A Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Simple To-Do List System 1.0... Unknown Unreviewed

CVE-2025-63709 was published Nov 10, 2025

In JetBrains YouTrack before 2025.3.104432 missing user principal cleanup led to reuse of... Low Unreviewed

CVE-2025-64686 was published Nov 10, 2025

In JetBrains YouTrack before 2025.3.104432 misconfiguration in the Junie could lead to exposure... Critical Unreviewed

CVE-2025-64689 was published Nov 10, 2025

In JetBrains YouTrack before 2025.3.104432 information disclosure was possible via the feedback form Moderate Unreviewed

CVE-2025-64684 was published Nov 10, 2025

Cross-Site Request Forgery (CSRF) in SourceCodester Product Expiry Management System. The User... Unknown Unreviewed

CVE-2025-63712 was published Nov 10, 2025

A security flaw has been discovered in SourceCodester Interview Management System up to 1.0.... Moderate Unreviewed

CVE-2025-12939 was published Nov 10, 2025

In JetBrains ReSharper before 2025.2.4 missing signature verification in DPA Collector allows... High Unreviewed

CVE-2025-64456 was published Nov 10, 2025

In JetBrains Hub before 2025.3.104432 a race condition allowed bypass of the Agent-user limit Low Unreviewed

CVE-2025-64682 was published Nov 10, 2025

In JetBrains dotTrace before 2025.2.5 local privilege escalation possible via race condition Moderate Unreviewed

CVE-2025-64457 was published Nov 10, 2025

In JetBrains Hub before 2025.3.104992 a race condition allowed bypass of the user limit via... Low Unreviewed

CVE-2025-64681 was published Nov 10, 2025

An improper privilege management vulnerability was found in Looker Studio. It impacted all JDBC... High Unreviewed

CVE-2025-12405 was published Nov 10, 2025

A vulnerability was identified in projectworlds Online Admission System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-12938 was published Nov 10, 2025

Cross Site Scripting (XSS) vulnerability stored in SOPlanning v1.53.02, which consist of a stored... Moderate Unreviewed

CVE-2025-41001 was published Nov 10, 2025

A SQL injection vulnerability was discovered in Looker Studio that allowed for data exfiltration... High Unreviewed

CVE-2025-12409 was published Nov 10, 2025

A SQL injection vulnerability was found in Looker Studio. A Looker Studio user with report view... High Unreviewed

CVE-2025-12397 was published Nov 10, 2025

A Command Injection vulnerability, resulting from improper file path sanitization (Directory... High Unreviewed

CVE-2025-12155 was published Nov 10, 2025

Previous 1…20…400 Next

Previous 1 2 … 18 19 20 21 22 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

301,518 advisories