Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

300,989 advisories

Loading
Rancher affected by unauthenticated Denial of Service High
CVE-2024-58259 was published for github.com/rancher/rancher (Go) Aug 29, 2025
Opencast has a partial path traversal vulnerability in UI config Low
CVE-2025-55202 was published for org.opencastproject:opencast-user-interface-configuration (Maven) Aug 29, 2025
odaysec lkiesow
Credited to odaysec and lkiesow
A weakness has been identified in O2OA up to 10.0-410. This affects an unknown part of the file ... Moderate Unreviewed
CVE-2025-9655 was published Aug 29, 2025
A vulnerability was identified in itsourcecode Apartment Management System 1.0. This affects an... Moderate Unreviewed
CVE-2025-9645 was published Aug 29, 2025
A vulnerability was determined in itsourcecode Apartment Management System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-9644 was published Aug 29, 2025
A security flaw has been discovered in O2OA up to 10.0-410. This vulnerability affects unknown... Moderate Unreviewed
CVE-2025-9646 was published Aug 29, 2025
A security vulnerability has been detected in appneta tcpreplay 4.5.1. Impacted is the function... Moderate Unreviewed
CVE-2025-9649 was published Aug 29, 2025
A vulnerability was determined in Portabilis i-Educar up to 2.10. Affected is an unknown function... Moderate Unreviewed
CVE-2025-9652 was published Aug 29, 2025
A vulnerability has been found in yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3... Moderate Unreviewed
CVE-2025-9650 was published Aug 29, 2025
A weakness has been identified in mtons mblog up to 3.5.0. This issue affects some unknown... Moderate Unreviewed
CVE-2025-9647 was published Aug 29, 2025
A vulnerability was found in shafhasan chatbox up to 156a39cde62f78532c3265a70eda12c70907e56f.... Moderate Unreviewed
CVE-2025-9651 was published Aug 29, 2025
AiondaDotCom mcp-ssh command injection vulnerability in SSH operations Moderate
CVE-2025-9654 was published for @aiondadotcom/mcp-ssh (npm) Aug 29, 2025
A vulnerability was identified in Portabilis i-Educar up to 2.10. Affected by this vulnerability... Moderate Unreviewed
CVE-2025-9653 was published Aug 29, 2025
Exiv2 has quadratic performance in ICC profile parsing in JpegBase::readMetadata Low
CVE-2025-55304 was published for Exiv2 (pip) Aug 29, 2025
gluck-pwn
Credited to gluck-pwn
Exiv2 Segmentation Faults in Exiv2::EpsImage::writeMetadata() via crafted EPS file Low
CVE-2025-54080 was published for Exiv2 (pip) Aug 29, 2025
dragonArthurX
Credited to dragonArthurX
Cross-Site Scripting (XSS) vulnerability in OpenAtlas v8.9.0 from the Austrian Centre for Digital... Moderate Unreviewed
CVE-2025-40707 was published Aug 29, 2025
Cross-Site Scripting (XSS) vulnerability in OpenAtlas v8.9.0 from the Austrian Centre for Digital... Moderate Unreviewed
CVE-2025-40708 was published Aug 29, 2025
Cross-Site Scripting (XSS) vulnerability in OpenAtlas v8.9.0 from the Austrian Centre for Digital... Moderate Unreviewed
CVE-2025-40709 was published Aug 29, 2025
A vulnerability was found in itsourcecode Apartment Management System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-9643 was published Aug 29, 2025
Cross-Site Scripting (XSS) vulnerability in OpenAtlas v8.9.0 from the Austrian Centre for Digital... Moderate Unreviewed
CVE-2025-40705 was published Aug 29, 2025
Cross-Site Scripting (XSS) vulnerability in OpenAtlas v8.9.0 from the Austrian Centre for Digital... Moderate Unreviewed
CVE-2025-40706 was published Aug 29, 2025
The Slider Revolution plugin for WordPress is vulnerable to Path Traversal in all versions up to,... Moderate Unreviewed
CVE-2025-9217 was published Aug 29, 2025
Cross-Site Scripting (XSS) vulnerability in OpenAtlas v8.9.0 from the Austrian Centre for Digital... Moderate Unreviewed
CVE-2025-40702 was published Aug 29, 2025
Cross-Site Scripting (XSS) vulnerability in OpenAtlas v8.9.0 from the Austrian Centre for Digital... Moderate Unreviewed
CVE-2025-40704 was published Aug 29, 2025
The Booster for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-13342 was published Aug 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database