GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,776
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,124
npm 4,308
NuGet 760
pip 4,081
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,310

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

132,945 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on... Moderate Unreviewed

CVE-2025-13683 was published Nov 28, 2025

Netskope was notified about a potential gap in its agent (NS Client) on Windows systems. If this... Moderate Unreviewed

CVE-2025-11156 was published Nov 28, 2025

Improper Privilege Management vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks... Moderate Unreviewed

CVE-2025-59790 was published Nov 28, 2025

Cross-site scripting (XSS) vulnerability in HCL Technologies Ltd. Unica 12.0.0. Moderate Unreviewed

CVE-2025-51734 was published Nov 28, 2025

Reveals plaintext credentials in the MONITOR command vulnerability in Apache Kvrocks. This issue... Moderate Unreviewed

CVE-2025-59792 was published Nov 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in HCL Technologies Ltd. Unica 12.0.0. Moderate Unreviewed

CVE-2025-51733 was published Nov 28, 2025

File upload vulnerability in HCL Technologies Ltd. Unica 12.0.0. Moderate Unreviewed

CVE-2025-51736 was published Nov 28, 2025

Stack-based Buffer Overflow vulnerability in ABB Terra AC wallbox.This issue affects Terra AC... Moderate Unreviewed

CVE-2025-12143 was published Nov 28, 2025

app/Model/EventReport.php in MISP before 2.5.27 allows path traversal in view picture for a site... Moderate Unreviewed

CVE-2025-66386 was published Nov 28, 2025

Identity authentication bypass vulnerability in the Gallery app. Impact: Successful exploitation... Moderate Unreviewed

CVE-2025-58305 was published Nov 28, 2025

Permission control vulnerability in the file management module. Impact: Successful exploitation... Moderate Unreviewed

CVE-2025-58304 was published Nov 28, 2025

Peppol-py before 1.1.1 allows XXE attacks because of the Saxon configuration. When validating XML... Moderate Unreviewed

CVE-2025-66371 was published Nov 28, 2025

Kivitendo before 3.9.2 allows XXE injection. By uploading an electronic invoice in the ZUGFeRD... Moderate Unreviewed

CVE-2025-66370 was published Nov 28, 2025

UAF vulnerability in the USB driver module. Impact: Successful exploitation of this vulnerability... Moderate Unreviewed

CVE-2025-58311 was published Nov 28, 2025

Permission control vulnerability in the file management module. Impact: Successful exploitation... Moderate Unreviewed

CVE-2025-64312 was published Nov 28, 2025

The Nextend Social Login and Register plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2025-13737 was published Nov 28, 2025

Permission control vulnerability in the App Lock module. Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2025-58312 was published Nov 28, 2025

Permission control vulnerability in the Wi-Fi module. Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2025-58315 was published Nov 28, 2025

Configuration defect vulnerability in the file management module. Impact: Successful exploitation... Moderate Unreviewed

CVE-2025-64315 was published Nov 28, 2025

Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2025-64311 was published Nov 28, 2025

Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of... Moderate Unreviewed

CVE-2025-64313 was published Nov 28, 2025

Vulnerability of accessing invalid memory in the component driver module. Impact: Successful... Moderate Unreviewed

CVE-2025-58314 was published Nov 28, 2025

Permission control vulnerability in the startup recovery module. Impact: Successful exploitation... Moderate Unreviewed

CVE-2025-58309 was published Nov 28, 2025

UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of... Moderate Unreviewed

CVE-2025-58307 was published Nov 28, 2025

Permission control vulnerability in the print module. Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2025-58294 was published Nov 28, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

132,945 advisories