GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

8,620 advisories

High

CVE-2025-66296 was published for getgrav/grav (Composer) Dec 2, 2025

High

CVE-2025-55749 was published for org.xwiki.platform:xwiki-platform-tool-jetty-resources (Maven) Dec 1, 2025

High

CVE-2025-66423 was published for trytond (pip) Nov 30, 2025

High

CVE-2025-12638 was published for Keras (pip) Nov 28, 2025 • withdrawn

High

CVE-2025-66035 was published for @angular/common (npm) Nov 26, 2025

High

CVE-2025-66031 was published for node-forge (npm) Nov 26, 2025

High

CVE-2025-12816 was published for node-forge (npm) Nov 26, 2025

High

CVE-2025-66020 was published for valibot (npm) Nov 26, 2025

High

CVE-2025-65966 was published for @oneuptime/common (npm) Nov 26, 2025

High

CVE-2025-62728 was published for org.apache.hive:hive-common (Maven) Nov 26, 2025

High

CVE-2025-66021 was published for com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer (Maven) Nov 25, 2025

High

GHSA-4vcf-q4xf-f48m was published for @better-auth/passkey (npm) Nov 25, 2025

High

CVE-2025-9624 was published for org.opensearch:opensearch-common (Maven) Nov 25, 2025

High

CVE-2025-62703 was published for fugue (pip) Nov 25, 2025

High

CVE-2025-58360 was published for org.geoserver.web:gs-web-app (Maven) Nov 25, 2025

High

CVE-2025-64050 was published for redaxo/source (Composer) Nov 25, 2025

High

CVE-2025-65965 was published for github.com/anchore/grype (Go) Nov 25, 2025

High

GHSA-2fcv-qww3-9v6h was published for github.com/babylonlabs-io/babylon/v4 (Go) Nov 24, 2025

High

CVE-2025-64761 was published for github.com/openbao/openbao (Go) Nov 24, 2025

High

CVE-2025-62155 was published for github.com/QuantumNous/new-api (Go) Nov 24, 2025

High

CVE-2025-60638 was published for github.com/free5gc/nssf (Go) Nov 24, 2025

High

CVE-2025-65998 was published for org.apache.syncope:syncope-core (Maven) Nov 24, 2025

High

CVE-2025-65947 was published for thread-amount (Rust) Nov 21, 2025

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,620 advisories

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,620 advisories

Uh oh!