GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 278,944

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

11,153 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security vulnerability has been detected in Rarlab RAR App up to 7.11 Build 127 on Android.... Low Unreviewed

CVE-2025-14111 was published Dec 6, 2025

A cross-site scripting (XSS) vulnerability has been reported to affect License Center. If... Low Unreviewed

CVE-2024-50406 was published Jun 6, 2025

Potential stack buffer overwrite on the SFTP server side when receiving a malicious packet that... Low Unreviewed

CVE-2025-11624 was published Oct 21, 2025

Potential use of sensitive information in GET requests in Checkmk GmbH's Checkmk versions <2.4... Low Unreviewed

CVE-2025-32916 was published Oct 9, 2025

Insecure Direct Object Reference vulnerability in Medtronic CareLink Network which allows an... Low Unreviewed

CVE-2025-12997 was published Dec 4, 2025

The server previously verified the TLS 1.3 PSK binder using a non-constant time method which... Low Unreviewed

CVE-2025-11932 was published Nov 22, 2025

Cross-Site Request Forgery (CSRF) in the resource-management feature of ObjectPlanet Opinio 7... Low Unreviewed

CVE-2025-13871 was published Dec 2, 2025

Blind Server-Side Request Forgery (SSRF) in the survey-import feature of ObjectPlanet Opinio 7... Low Unreviewed

CVE-2025-13872 was published Dec 2, 2025

Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels... Low Unreviewed

CVE-2025-12888 was published Nov 22, 2025

With TLS 1.2 connections a client can use any digest, specifically a weaker digest that is... Low Unreviewed

CVE-2025-12889 was published Nov 22, 2025

Integer Underflow Leads to Out-of-Bounds Access in XChaCha20-Poly1305 Decrypt. This issue is hit... Low Unreviewed

CVE-2025-11931 was published Nov 22, 2025

A vulnerability was detected in dayrui XunRuiCMS up to 4.7.1. This affects an unknown part of the... Low Unreviewed

CVE-2025-14007 was published Dec 4, 2025

In display, there is a possible out of bounds write due to a missing bounds check. This could... Low Unreviewed

CVE-2025-20769 was published Dec 2, 2025

Improper Input Validation in the TLS 1.3 CKS extension parsing in wolfSSL 5.8.2 and earlier on... Low Unreviewed

CVE-2025-11933 was published Nov 22, 2025

Improper input validation in the TLS 1.3 CertificateVerify signature algorithm negotiation in... Low Unreviewed

CVE-2025-11934 was published Nov 22, 2025

In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform... Low Unreviewed

CVE-2025-20382 was published Dec 3, 2025

Interactive service agent in OpenVPN version 2.5.0 through 2.7_rc2 on Windows allows a local... Low Unreviewed

CVE-2025-13751 was published Dec 3, 2025

In Splunk Enterprise versions below 10.0.1, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform... Low Unreviewed

CVE-2025-20388 was published Dec 3, 2025

In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform... Low Unreviewed

CVE-2025-20385 was published Dec 3, 2025

The Timetable and Event Schedule by MotoPress WordPress plugin before 2.4.16 does not verify a... Low Unreviewed

CVE-2025-12954 was published Dec 3, 2025

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server:... Low Unreviewed

CVE-2025-13758 was published Nov 27, 2025

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a... Low Unreviewed

CVE-2025-59696 was published Dec 2, 2025

Inappropriate implementation in Passwords in Google Chrome prior to 143.0.7499.41 allowed a local... Low Unreviewed

CVE-2025-13640 was published Dec 2, 2025

A security flaw has been discovered in Langfuse up to 3.88.0. Affected by this vulnerability is... Low Unreviewed

CVE-2025-9799 was published Dec 2, 2025

When loading a plist file, the plistlib module reads data in size specified by the file itself,... Low Unreviewed

CVE-2025-13837 was published Dec 1, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,153 advisories