GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,833
Composer 5,055
Erlang 39
GitHub Actions 38
Go 2,685
Maven 6,134
npm 4,318
NuGet 760
pip 4,092
Pub 12
RubyGems 958
Rust 1,063
Swift 45

Unreviewed advisories

All unreviewed 278,484

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

133,071 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Export All Posts, Products, Orders, Refunds & Users plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-13606 was published Dec 2, 2025

Improper input validation in Samsung Account prior to version 15.5.01.1 allows local attacker to... Moderate Unreviewed

CVE-2025-58486 was published Dec 2, 2025

Improper export of android application components in Galaxy Store for Galaxy Watch prior to... Moderate Unreviewed

CVE-2025-58483 was published Dec 2, 2025

Incorrect default permissions in Samsung Cloud Assistant prior to version 8.0.03.8 allows local... Moderate Unreviewed

CVE-2025-58484 was published Dec 2, 2025

Heap-based buffer overflow in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows... Moderate Unreviewed

CVE-2025-58480 was published Dec 2, 2025

Improper authorization in Samsung Account prior to version 15.5.01.1 allows local attacker to... Moderate Unreviewed

CVE-2025-58487 was published Dec 2, 2025

Improper input validation in Samsung Internet prior to version 29.0.0.48 allows local attackers... Moderate Unreviewed

CVE-2025-58485 was published Dec 2, 2025

Improper verification of source of a communication channel in SmartTouchCall prior to version 1.0... Moderate Unreviewed

CVE-2025-58488 was published Dec 2, 2025

The BlockArt Blocks – Gutenberg Blocks, Page Builder Blocks ,WordPress Block Plugin, Sections &... Moderate Unreviewed

CVE-2025-13697 was published Dec 2, 2025

Out-of-bounds write in decoding metadata in fingerprint trustlet prior to SMR Dec-2025 Release 1... Moderate Unreviewed

CVE-2025-21072 was published Dec 2, 2025

HackerOne community member Kassem S.(kassem_s94) has reported that username handling in Revive... Moderate Unreviewed

CVE-2025-55129 was published Dec 2, 2025

Improper export of android application components in Dynamic Lockscreen prior to SMR Dec-2025... Moderate Unreviewed

CVE-2025-21080 was published Dec 2, 2025

Out-of-bounds write in parsing IFD tag in libimagecodec.quram.so prior to SMR Dec-2025 Release 1... Moderate Unreviewed

CVE-2025-58477 was published Dec 2, 2025

Out-of-bounds read vulnerability in bootloader prior to SMR Dec-2025 Release 1 allows physical... Moderate Unreviewed

CVE-2025-58476 was published Dec 2, 2025

Improper input validation in libsec-ril.so prior to SMR Dec-2025 Release 1 allows local... Moderate Unreviewed

CVE-2025-58475 was published Dec 2, 2025

Out-of-bounds write in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote... Moderate Unreviewed

CVE-2025-58478 was published Dec 2, 2025

Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote... Moderate Unreviewed

CVE-2025-58479 was published Dec 2, 2025

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12... Moderate Unreviewed

CVE-2025-12756 was published Dec 1, 2025

A carefully crafted DLL, copied to C:\ProgramData\Synaptics folder, allows a local user to... Moderate Unreviewed

CVE-2025-11772 was published Dec 1, 2025

A use-after-free in the MPEG1or2Demux::newElementaryStream() function of Live555 Streaming Media... Moderate Unreviewed

CVE-2025-65407 was published Dec 1, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-13835 was published Dec 1, 2025

In Search Guard FLX versions from 3.1.0 up to 4.0.0 with enterprise modules being disabled, there... Moderate Unreviewed

CVE-2025-13653 was published Dec 1, 2025

A buffer overflow in the g_cfg.MaxUsers component of LightFTP v2.0 allows attackers to cause a... Moderate Unreviewed

CVE-2025-65403 was published Dec 1, 2025

A heap overflow in the MatroskaFile::createRTPSinkForTrackNumber() function of Live555 Streaming... Moderate Unreviewed

CVE-2025-65406 was published Dec 1, 2025

Improper input validation in the BitstreamWriter::write_bits() function of Tempus Ex hello-video... Moderate Unreviewed

CVE-2025-63095 was published Dec 1, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

133,071 advisories