GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,043
Composer 4,877
Erlang 37
GitHub Actions 38
Go 2,532
Maven 5,977
npm 4,191
NuGet 742
pip 3,970
Pub 12
RubyGems 947
Rust 1,030
Swift 39

Unreviewed advisories

All unreviewed 271,495

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

128,147 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... Moderate Unreviewed

CVE-2025-34232 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... Moderate Unreviewed

CVE-2025-34229 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... Moderate Unreviewed

CVE-2025-34230 was published Sep 29, 2025

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below... Moderate Unreviewed

CVE-2025-57871 was published Sep 29, 2025

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may... Moderate Unreviewed

CVE-2025-57878 was published Sep 29, 2025

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may... Moderate Unreviewed

CVE-2025-57872 was published Sep 29, 2025

IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to a denial of service, caused by... Moderate Unreviewed

CVE-2025-36099 was published Sep 29, 2025

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below... Moderate Unreviewed

CVE-2025-57873 was published Sep 29, 2025

Medical Informatics Engineering Enterprise Health allows authenticated users to upload arbitrary... Moderate Unreviewed

CVE-2025-35032 was published Sep 29, 2025

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below... Moderate Unreviewed

CVE-2025-57877 was published Sep 29, 2025

There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS 11.4 and below... Moderate Unreviewed

CVE-2025-57876 was published Sep 29, 2025

Trivision NC-227WF firmware 5.80 (build 20141010) login mechanism reveals whether a username... Moderate Unreviewed

CVE-2025-56764 was published Sep 29, 2025

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below... Moderate Unreviewed

CVE-2025-57874 was published Sep 29, 2025

Medical Informatics Engineering Enterprise Health has a reflected cross site scripting... Moderate Unreviewed

CVE-2025-35034 was published Sep 29, 2025

There is a reflected cross site scripting vulnerability in Esri Portal for ArcGIS 11.4 and below... Moderate Unreviewed

CVE-2025-57875 was published Sep 29, 2025

There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may... Moderate Unreviewed

CVE-2025-57879 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and... Moderate Unreviewed

CVE-2025-34220 was published Sep 29, 2025

Medical Informatics Engineering Enterprise Health includes the user's current session token in... Moderate Unreviewed

CVE-2025-35031 was published Sep 29, 2025

Medical Informatics Engineering Enterprise Health has a CSV injection vulnerability that allows a... Moderate Unreviewed

CVE-2025-35033 was published Sep 29, 2025

IBM Transformation Advisor 2.0.1 through 4.3.1 incorrectly assigns privileges to security... Moderate Unreviewed

CVE-2025-36193 was published Sep 29, 2025

In the Payeer Android application 2.5.0, an improper access control vulnerability exists in the... Moderate Unreviewed

CVE-2025-57197 was published Sep 29, 2025

VMware Aria Operations contains an information disclosure vulnerability. A malicious actor with... Moderate Unreviewed

CVE-2025-41245 was published Sep 29, 2025

The credentials required to access the device's web server are sent in base64 within the HTTP... Moderate Unreviewed

CVE-2025-11155 was published Sep 29, 2025

bash-git-prompt 2.6.1 through 2.7.1 insecurely uses the /tmp/git-index-private$$ file, which has... Moderate Unreviewed

CVE-2025-61659 was published Sep 29, 2025

A mass assignment vulnerability exists in danny-avila/librechat, affecting all versions. This... Moderate Unreviewed

CVE-2025-7104 was published Sep 29, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

128,147 advisories