Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

301,054 advisories

Loading
The SourceCodester Android application "Corona Virus Tracker App India" 1.0 uses MD5 for digest... Moderate Unreviewed
CVE-2025-56608 was published Sep 3, 2025
The mikecao/flight PHP framework in versions prior to v1.2 is vulnerable to Denial of Service ... High Unreviewed
CVE-2014-125127 was published Sep 3, 2025
Origin Validation Error vulnerability in Akinsoft LimonDesk allows Forceful Browsing.This issue... High Unreviewed
CVE-2024-13068 was published Sep 3, 2025
Missing Authorization vulnerability in Malcure Web Security Malcure Malware Scanner allows... Moderate Unreviewed
CVE-2025-3701 was published Sep 3, 2025
Deserialization of Untrusted Data vulnerability in Sitecore Experience Manager (XM), Sitecore... High Unreviewed
CVE-2025-53691 was published Sep 3, 2025
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed
CVE-2025-0878 was published Sep 3, 2025
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability... Critical Unreviewed
CVE-2025-53693 was published Sep 3, 2025
Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability... High Unreviewed
CVE-2025-47421 was published Sep 3, 2025
Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft LimonDesk... High Unreviewed
CVE-2025-2416 was published Sep 3, 2025
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject... Unknown Unreviewed
CVE-2025-38678 was published Sep 3, 2025
Improper Restriction of Rendered UI Layers or Frames vulnerability in Akinsoft LimonDesk allows... Moderate Unreviewed
CVE-2024-13066 was published Sep 3, 2025
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Sitecore Sitecore... High Unreviewed
CVE-2025-53694 was published Sep 3, 2025
A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored... Moderate Unreviewed
CVE-2025-9901 was published Sep 3, 2025
An Cross-Site Scripting (XSS) vulnerability in DeepSeek R1 through V3.1 allows a remote attacker... Critical Unreviewed
CVE-2025-26210 was published Sep 3, 2025
OpenAM (OpenAM Consortium Edition) contains a vulnerability that may cause it to malfunction as a... Low Unreviewed
CVE-2025-8662 was published Sep 3, 2025
Apache DolphinScheduler Incorrect Default Permissions Vulnerability Low
CVE-2024-43166 was published for org.apache.dolphinscheduler:dolphinscheduler (Maven) Sep 3, 2025
Cross-Frame Scripting (XFS) vulnerability in BoomCMS v9.1.4 from UXB London. XFS is a web attack... Low Unreviewed
CVE-2025-41000 was published Sep 3, 2025
A vulnerability was detected in Das Parking Management System 停车场管理系统 6.2.0. This impacts an... Moderate Unreviewed
CVE-2025-9842 was published Sep 3, 2025
The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin... Moderate Unreviewed
CVE-2025-9260 was published Sep 3, 2025
A weakness has been identified in itsourcecode Sports Management System 1.0. The impacted element... Moderate Unreviewed
CVE-2025-9840 was published Sep 3, 2025
A security vulnerability has been detected in code-projects Mobile Shop Management System 1.0.... Moderate Unreviewed
CVE-2025-9841 was published Sep 3, 2025
In FuseDaemon.cpp, there is a possible out of bounds write due to memory corruption. This could... Unknown Unreviewed
CVE-2024-49730 was published Sep 3, 2025
In showAvatarPicker of EditUserPhotoController.java, there is a possible cross user image leak... Unknown Unreviewed
CVE-2024-49722 was published Sep 3, 2025
In multiple functions of DevicePolicyManagerService.java, there is a possible way to install... Unknown Unreviewed
CVE-2025-22442 was published Sep 3, 2025
In afterKeyEventLockedInterruptable of InputDispatcher.cpp, there is a possible use after free.... Unknown Unreviewed
CVE-2025-22438 was published Sep 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database