Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

113,849 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix use... High Unreviewed
CVE-2022-49910 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined... High Unreviewed
CVE-2022-49907 was published May 1, 2025
SAP CommonCryptoLib does not perform necessary boundary checks during pre-authentication parsing... High Unreviewed
CVE-2025-42940 was published Nov 11, 2025
A privilege escalation vulnerability was identified in GitHub Enterprise Server that allowed an... High Unreviewed
CVE-2025-11578 was published Nov 11, 2025
PacsOne Server version 6.6.2 (prior versions are likely affected) contains a directory traversal... High Unreviewed
CVE-2018-25124 was published Nov 11, 2025
An improper neutralization of input vulnerability was identified in GitHub Enterprise Server that... High Unreviewed
CVE-2025-11892 was published Nov 11, 2025
Missing Authorization vulnerability in e4jvikwp VikBooking Hotel Booking Engine & PMS vikbooking... High Unreviewed
CVE-2025-5803 was published Nov 6, 2025
Missing Authorization vulnerability in bPlugins Image Gallery block – Create and display photo... High Unreviewed
CVE-2025-49394 was published Nov 6, 2025
Incorrect Privilege Assignment vulnerability in bPlugins Advanced scrollbar advanced-scrollbar... High Unreviewed
CVE-2025-49900 was published Nov 6, 2025
Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions... High Unreviewed
CVE-2025-12779 was published Nov 6, 2025
Cross-Site Request Forgery (CSRF) vulnerability in nitinmaurya12 Block Country block-country... High Unreviewed
CVE-2025-48077 was published Nov 6, 2025
Missing Authorization vulnerability in flippercode Advanced Google Maps wp-google-map-gold allows... High Unreviewed
CVE-2025-39465 was published Nov 6, 2025
In the Linux kernel, the following vulnerability has been resolved: tracing: Fix oob write in... High Unreviewed
CVE-2025-37923 was published May 20, 2025
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in... High Unreviewed
CVE-2025-37924 was published May 20, 2025
In the Linux kernel, the following vulnerability has been resolved: dm-bufio: don't schedule in... High Unreviewed
CVE-2025-37928 was published May 20, 2025
In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix potential... High Unreviewed
CVE-2025-37927 was published May 20, 2025
In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined... High Unreviewed
CVE-2022-49870 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: riscv: fix reserved memory... High Unreviewed
CVE-2022-49851 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in... High Unreviewed
CVE-2025-37926 was published May 20, 2025
In the Linux kernel, the following vulnerability has been resolved: net: lapbether: fix issue of... High Unreviewed
CVE-2022-49859 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free... High Unreviewed
CVE-2022-49834 was published May 1, 2025
TorrentPier is Vulnerable to Authenticated SQL Injection through Moderator Control Panel's topic_id parameter High
CVE-2025-64519 was published for torrentpier/torrentpier (Composer) Nov 10, 2025
XY20130630
Credited to XY20130630
Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially... High Unreviewed
CVE-2025-12432 was published Nov 10, 2025
Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.7444.59 allowed a... High Unreviewed
CVE-2025-12438 was published Nov 10, 2025
Inappropriate implementation in Views in Google Chrome on Windows prior to 142.0.7444.137 allowed... High Unreviewed
CVE-2025-12726 was published Nov 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database