Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

301,097 advisories

Loading
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the wanMTU parameter in the... Unknown Unreviewed
CVE-2025-63457 was published Nov 10, 2025
Dell Display and Peripheral Manager, versions prior to 2.1.2.12, contains an Execution with... High Unreviewed
CVE-2025-46430 was published Nov 10, 2025
Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the... Unknown Unreviewed
CVE-2025-63456 was published Nov 10, 2025
A stored cross-site scripting (XSS) vulnerability was discovered in Tenda AC18 v15.03.05.05_multi... Unknown Unreviewed
CVE-2025-63834 was published Nov 10, 2025
TOTOLink A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow in the... Unknown Unreviewed
CVE-2025-63154 was published Nov 10, 2025
In JetBrains YouTrack before 2025.3.104432 misconfiguration in the Junie could lead to exposure... Critical Unreviewed
CVE-2025-64689 was published Nov 10, 2025
In JetBrains YouTrack before 2025.3.104432 improper access control allowed modify MCP tool logic Moderate Unreviewed
CVE-2025-64687 was published Nov 10, 2025
In JetBrains YouTrack before 2025.3.104432 information disclosure was possible via the feedback form Moderate Unreviewed
CVE-2025-64684 was published Nov 10, 2025
A Cross-Site Request Forgery (CSRF) vulnerability in the SourceCodester Client Database... High Unreviewed
CVE-2025-63711 was published Nov 10, 2025
In JetBrains Hub before 2025.3.104432 information disclosure was possible via the Users API Moderate Unreviewed
CVE-2025-64683 was published Nov 10, 2025
In JetBrains YouTrack before 2025.3.104432 missing VCS URL validation allowed delegation to... High Unreviewed
CVE-2025-64688 was published Nov 10, 2025
In JetBrains YouTrack before 2025.3.104432 missing user principal cleanup led to reuse of... Low Unreviewed
CVE-2025-64686 was published Nov 10, 2025
Cross-Site Request Forgery (CSRF) in SourceCodester Product Expiry Management System. The User... Unknown Unreviewed
CVE-2025-63712 was published Nov 10, 2025
A Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Simple To-Do List System 1.0... Unknown Unreviewed
CVE-2025-63709 was published Nov 10, 2025
In JetBrains YouTrack before 2025.3.104432 insecure Junie configuration could lead to data... Moderate Unreviewed
CVE-2025-64690 was published Nov 10, 2025
The send_message.php endpoint in SourceCodester Simple Public Chat Room 1.0 is vulnerable to... Unknown Unreviewed
CVE-2025-63710 was published Nov 10, 2025
In JetBrains YouTrack before 2025.3.104432 missing TLS certificate validation enabled data... High Unreviewed
CVE-2025-64685 was published Nov 10, 2025
Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw... Critical Unreviewed
CVE-2025-12480 was published Nov 10, 2025
In JetBrains ReSharper before 2025.2.4 missing signature verification in DPA Collector allows... High Unreviewed
CVE-2025-64456 was published Nov 10, 2025
In JetBrains Hub before 2025.3.104992 a race condition allowed bypass of the user limit via... Low Unreviewed
CVE-2025-64681 was published Nov 10, 2025
A security flaw has been discovered in SourceCodester Interview Management System up to 1.0.... Moderate Unreviewed
CVE-2025-12939 was published Nov 10, 2025
In JetBrains dotTrace before 2025.2.5 local privilege escalation possible via race condition Moderate Unreviewed
CVE-2025-64457 was published Nov 10, 2025
In JetBrains Hub before 2025.3.104432 a race condition allowed bypass of the Agent-user limit Low Unreviewed
CVE-2025-64682 was published Nov 10, 2025
A vulnerability was identified in projectworlds Online Admission System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-12938 was published Nov 10, 2025
An improper privilege management vulnerability was found in Looker Studio. It impacted all JDBC... High Unreviewed
CVE-2025-12405 was published Nov 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database