Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,681
Maven
5,000+
npm
4,311
NuGet
760
pip
4,085
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

106,116 advisories

Loading
SoftSea EPUB File Reader 1.0.0.0 is vulnerable to Directory Traversal. The vulnerability resides... High Unreviewed
CVE-2025-63365 was published Dec 1, 2025
KissFFT versions prior to the fix commit 1b083165 contain an integer overflow in kiss_fft_alloc()... High Unreviewed
CVE-2025-34297 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function... High Unreviewed
CVE-2025-55221 was published Dec 1, 2025
NULL Pointer Dereference vulnerability in Avast Antivirus on MacOS, Avast Anitvirus on Linux when... High Unreviewed
CVE-2025-7007 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function... High Unreviewed
CVE-2025-55222 was published Dec 1, 2025
A cross-site scripting (XSS) vulnerability exists in the Blood Bank Management System 1.0 within... High Unreviewed
CVE-2025-63534 was published Dec 1, 2025
Denial of Service vulnerability in Apache Struts, file leak in multipart request processing... High Unreviewed
CVE-2025-64775 was published Dec 1, 2025
A cross-site scripting (XSS) vulnerability exists in the Blood Bank Management System 1.0 within... High Unreviewed
CVE-2025-63533 was published Dec 1, 2025
An issue in Shirt Pocket SuperDuper! V.3.10 and before allows a local attacker to execute... High Unreviewed
CVE-2025-61228 was published Dec 1, 2025
Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows... High Unreviewed
CVE-2025-57489 was published Dec 1, 2025
Heap-based Buffer Overflow, Out-of-bounds Write vulnerability in Avast Antivirus on MacOS of a... High Unreviewed
CVE-2025-10101 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec... High Unreviewed
CVE-2025-23417 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP functionality of Socomec DIRIS... High Unreviewed
CVE-2024-49572 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed
CVE-2025-54850 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec... High Unreviewed
CVE-2025-20085 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP functionality of Socomec DIRIS... High Unreviewed
CVE-2024-48882 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed
CVE-2025-54851 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed
CVE-2025-54848 was published Dec 1, 2025
A cross-site request forgery (csrf) vulnerability exists in the WEBVIEW-M functionality of... High Unreviewed
CVE-2024-53684 was published Dec 1, 2025
Incorrect Authorization vulnerability in Data Illusion Zumbrunn NGSurvey allows any logged-in... High Unreviewed
CVE-2025-13829 was published Dec 1, 2025
A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP functionality... High Unreviewed
CVE-2025-54849 was published Dec 1, 2025
A buffer overflow vulnerability exists in the Modbus TCP functionality of Socomec DIRIS Digiware... High Unreviewed
CVE-2025-26858 was published Dec 1, 2025
An authentication bypass vulnerability exists in the User profile management functionality of... High Unreviewed
CVE-2024-45370 was published Dec 1, 2025
nopCommerce v4.70 and prior, and version 4.80.3, does not invalidate session cookies after logout... High Unreviewed
CVE-2025-11699 was published Dec 1, 2025
The service wmp-agent of KerOS prior 5.12 does not properly validate so-called ‘magic URLs’... High Unreviewed
CVE-2024-39148 was published Dec 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database