GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,190
Composer 4,893
Erlang 38
GitHub Actions 38
Go 2,550
Maven 6,018
npm 4,222
NuGet 745
pip 3,998
Pub 12
RubyGems 953
Rust 1,039
Swift 45

Unreviewed advisories

All unreviewed 273,104

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

29,632 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Novel-Plus with 5.2.0 was discovered to contain a Stored Cross-Site Scripting (XSS) vulnerability... Moderate Unreviewed

CVE-2025-60299 was published Oct 8, 2025

Novel-Plus up to 5.2.4 was discovered to contain a Stored Cross-Site Scripting (XSS)... Moderate Unreviewed

CVE-2025-60298 was published Oct 8, 2025

A security flaw has been discovered in itsourcecode Leave Management System 1.0. This impacts the... Moderate Unreviewed

CVE-2025-11433 was published Oct 8, 2025

A security vulnerability has been detected in JhumanJ OpnForm up to 1.9.3. Affected by this... Moderate Unreviewed

CVE-2025-11435 was published Oct 8, 2025

A flaw has been found in JhumanJ OpnForm up to 1.9.3. This affects an unknown part of the file ... Moderate Unreviewed

CVE-2025-11437 was published Oct 8, 2025

A vulnerability was identified in projectworlds Advanced Library Management System 1.0. Affected... Moderate Unreviewed

CVE-2025-11425 was published Oct 8, 2025

A flaw has been found in code-projects Voting System 1.0. The affected element is an unknown... Moderate Unreviewed

CVE-2025-11421 was published Oct 8, 2025

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other... Moderate Unreviewed

CVE-2025-61998 was published Oct 8, 2025

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to upload JavaScript or other... Moderate Unreviewed

CVE-2025-61999 was published Oct 8, 2025

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other... Moderate Unreviewed

CVE-2025-61996 was published Oct 8, 2025

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other... Moderate Unreviewed

CVE-2025-61997 was published Oct 8, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2025-3448 was published Oct 7, 2025

IBM Engineering Requirements Management DOORS Next (IBM Jazz Foundation 7.0.2 to 7.0.2 iFix034, 7... Moderate Unreviewed

CVE-2025-1826 was published Oct 7, 2025

A Cross-Site Scripting (XSS) vulnerability was found in the register.php page of PuneethReddyHC... Moderate Unreviewed

CVE-2025-56243 was published Oct 7, 2025

Sourcecodester Markdown to HTML Converter v1.0 is vulnerable to a Cross-Site Scripting (XSS) in... Moderate Unreviewed

CVE-2025-60312 was published Oct 7, 2025

Stored Cross-Site Scripting (XSS) in Biobanking and Biomolecular Resources Negotiator v3.15.2 -... Moderate Unreviewed

CVE-2025-40649 was published Oct 7, 2025

A weakness has been identified in PHPGurukul Cyber Cafe Management System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-11390 was published Oct 7, 2025

The Featured Image from URL (FIFU) plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2025-7400 was published Oct 7, 2025

A vulnerability was detected in jakowenko double-take up to 1.13.1. The impacted element is the... Moderate Unreviewed

CVE-2025-11360 was published Oct 7, 2025

A stored Cross-site scripting (XSS) vulnerability exists in the Customer Management Module of... Moderate Unreviewed

CVE-2025-56382 was published Oct 6, 2025

Cross Site Scripting (XSS) vulnerability in EndRun Technologies Sonoma D12 Network Time Server ... Moderate Unreviewed

CVE-2025-60961 was published Oct 6, 2025

Cross Site Scripting vulnerability in DokuWiki 2025-05-14a 'Librarian'[56.1] allows a remote... Moderate Unreviewed

CVE-2025-61224 was published Oct 6, 2025

A stored cross-site scripting (XSS) vulnerability in Optimod 5950 - Optimod 5950HD - Optimod 5750... Moderate Unreviewed

CVE-2025-61198 was published Oct 6, 2025

A vulnerability was determined in CmsEasy up to 7.7.7. This affects an unknown function in the... Moderate Unreviewed

CVE-2025-11332 was published Oct 6, 2025

A vulnerability was identified in langleyfcu Online Banking System up to... Moderate Unreviewed

CVE-2025-11333 was published Oct 6, 2025

Previous 1…3…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

29,632 advisories