GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,875
Composer 5,065
Erlang 39
GitHub Actions 38
Go 2,698
Maven 6,138
npm 4,325
NuGet 761
pip 4,099
Pub 12
RubyGems 958
Rust 1,063
Swift 45

Unreviewed advisories

All unreviewed 278,642

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

341 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

XML-Sig versions 0.27 through 0.67 for Perl incorrectly validates XML files if signatures are... Critical Unreviewed

CVE-2025-40934 was published Nov 27, 2025

GoSign Desktop versions 2.4.0 and earlier use an unsigned update manifest for distributing... High Unreviewed

CVE-2025-34324 was published Nov 18, 2025

Improper verification of cryptographic signature in the installer for Zoom Workplace VDI Client... High Unreviewed

CVE-2025-64740 was published Nov 13, 2025

In JetBrains ReSharper before 2025.2.4 missing signature verification in DPA Collector allows... High Unreviewed

CVE-2025-64456 was published Nov 10, 2025

Improper authentication in the API authentication middleware of HCL DevOps Loop allows... High Unreviewed

CVE-2025-55278 was published Nov 6, 2025

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... High Unreviewed

CVE-2025-43468 was published Nov 4, 2025

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing... Moderate Unreviewed

CVE-2025-43390 was published Nov 4, 2025

Cryptographic validation of upgrade images could be circumventing by dropping a specifically... Moderate Unreviewed

CVE-2025-54549 was published Oct 30, 2025

A weakness has been identified in D-Link DAP-2695 2.00RC13. The affected element is the function... Moderate Unreviewed

CVE-2025-12295 was published Oct 27, 2025

Deck Mate 1 executes firmware directly from an external EEPROM without verifying authenticity or... High Unreviewed

CVE-2025-34503 was published Oct 25, 2025

An Improper Verification of Cryptographic Signature vulnerability [CWE-347] in FortiClient MacOS... High Unreviewed

CVE-2025-46774 was published Oct 14, 2025

The OAuth Single Sign On – SSO (OAuth Client) plugin for WordPress is vulnerable to Improper... Critical Unreviewed

CVE-2025-9485 was published Oct 4, 2025

E3 Site Supervisor Control (firmware version < 2.31F01) firmware upgrade packages are unsigned.... High Unreviewed

CVE-2025-52550 was published Oct 1, 2025

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X13SEM... Moderate Unreviewed

CVE-2025-6198 was published Sep 19, 2025

There is a vulnerability in the Supermicro BMC firmware validation logic at Supermicro MBD-X12STW... Moderate Unreviewed

CVE-2025-7937 was published Sep 19, 2025

A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated... Moderate Unreviewed

CVE-2025-20248 was published Sep 10, 2025

An insufficiently secured internal function allows session generation for arbitrary users. The... High Unreviewed

CVE-2025-30064 was published Aug 27, 2025

Improper verification of cryptographic signature in Windows Certificates allows an unauthorized... Moderate Unreviewed

CVE-2025-55229 was published Aug 21, 2025

A potential vulnerability was reported in the Lenovo 510 FHD and Performance FHD web cameras that... High Unreviewed

CVE-2025-4371 was published Aug 18, 2025

A vulnerability has been identified in Mendix SAML (Mendix 10.12 compatible) (All versions < V4.0... High Unreviewed

CVE-2025-40758 was published Aug 14, 2025

An improper verification of cryptographic signature in Zscaler's SAML authentication mechanism on... Critical Unreviewed

CVE-2025-54982 was published Aug 5, 2025

It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software,... Critical Unreviewed

CVE-2025-8454 was published Aug 1, 2025

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in... Moderate Unreviewed

CVE-2025-43185 was published Jul 30, 2025

A potential security vulnerability has been identified in the HP Linux Imaging and Printing... Moderate Unreviewed

CVE-2025-43023 was published Jul 28, 2025

A vulnerability has been identified in TIA Administrator (All versions < V3.0.6). The affected... Moderate Unreviewed

CVE-2025-23364 was published Jul 8, 2025

Previous1…14 Next

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

341 advisories