Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

301,639 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58989 was published Sep 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-58993 was published Sep 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-59008 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58987 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58984 was published Sep 9, 2025
Missing Authorization vulnerability in frenify Categorify allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-59005 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58990 was published Sep 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Frenify Mow allows Code Injection. This issue... Critical Unreviewed
CVE-2025-58997 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58988 was published Sep 9, 2025
Missing Authorization vulnerability in WP Swings PDF Generator for WordPress allows Exploiting... Moderate Unreviewed
CVE-2025-58978 was published Sep 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Cristiano Zanca WooCommerce Booking Bundle... High Unreviewed
CVE-2025-58991 was published Sep 9, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-58985 was published Sep 9, 2025
Missing Authorization vulnerability in BerqWP BerqWP allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-58979 was published Sep 9, 2025
A vulnerability was detected in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.5... Moderate Unreviewed
CVE-2025-5005 was published Sep 9, 2025
A stored cross-site scripting (XSS) vulnerability exists in the WebAuthn Relying Party field... Moderate Unreviewed
CVE-2025-57540 was published Sep 9, 2025
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the... High Unreviewed
CVE-2025-57078 was published Sep 9, 2025
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the staticRouteGateway... High Unreviewed
CVE-2025-57072 was published Sep 9, 2025
Tenda W30E V16.01.0.19 (5037) was discovered to contain a stack overflow in the String parameter... High Unreviewed
CVE-2025-57086 was published Sep 9, 2025
Tenda W30E V16.01.0.19 (5037) was discovered to contain a stack overflow in the v17 parameter in... Critical Unreviewed
CVE-2025-57085 was published Sep 9, 2025
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the pPppUser parameter... High Unreviewed
CVE-2025-57069 was published Sep 9, 2025
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the gstUp parameter in... High Unreviewed
CVE-2025-57070 was published Sep 9, 2025
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the bindDhcpIndex... High Unreviewed
CVE-2025-57064 was published Sep 9, 2025
A stored cross-site scripting (XSS) vulnerability in the HTTP Proxy field within the Datacenter... Moderate Unreviewed
CVE-2025-57538 was published Sep 9, 2025
Tenda W30E V16.01.0.19 (5037) was discovered to contain a stack overflow in the countryCode... High Unreviewed
CVE-2025-57087 was published Sep 9, 2025
Tenda G3 v3.0br_V15.11.0.17 was discovered to contain a stack overflow in the portMappingIndex... High Unreviewed
CVE-2025-57063 was published Sep 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database