GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,787
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,681
Maven 6,127
npm 4,311
NuGet 760
pip 4,085
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,444

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

133,027 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A use-after-free in the MPEG1or2Demux::newElementaryStream() function of Live555 Streaming Media... Moderate Unreviewed

CVE-2025-65407 was published Dec 1, 2025

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12... Moderate Unreviewed

CVE-2025-12756 was published Dec 1, 2025

A carefully crafted DLL, copied to C:\ProgramData\Synaptics folder, allows a local user to... Moderate Unreviewed

CVE-2025-11772 was published Dec 1, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-13835 was published Dec 1, 2025

In Search Guard FLX versions from 3.1.0 up to 4.0.0 with enterprise modules being disabled, there... Moderate Unreviewed

CVE-2025-13653 was published Dec 1, 2025

A buffer overflow in the g_cfg.MaxUsers component of LightFTP v2.0 allows attackers to cause a... Moderate Unreviewed

CVE-2025-65403 was published Dec 1, 2025

A heap overflow in the MatroskaFile::createRTPSinkForTrackNumber() function of Live555 Streaming... Moderate Unreviewed

CVE-2025-65406 was published Dec 1, 2025

Improper input validation in the BitstreamWriter::write_bits() function of Tempus Ex hello-video... Moderate Unreviewed

CVE-2025-63095 was published Dec 1, 2025

A use-after-free in the ADTSAudioFileSource::samplingFrequency() function of Live555 Streaming... Moderate Unreviewed

CVE-2025-65405 was published Dec 1, 2025

A buffer overflow in the getSideInfo2() function of Live555 Streaming Media v2018.09.02 allows... Moderate Unreviewed

CVE-2025-65404 was published Dec 1, 2025

When reading an HTTP response from a server, if no read amount is specified, the default behavior... Moderate Unreviewed

CVE-2025-13836 was published Dec 1, 2025

A NULL pointer dereference in the ADTSAudioFileServerMediaSubsession::createNewRTPSink() function... Moderate Unreviewed

CVE-2025-65408 was published Dec 1, 2025

Due to a firewall misconfiguration, Kerlink devices running KerOS prior to 5.12 incorrectly... Moderate Unreviewed

CVE-2024-32388 was published Dec 1, 2025

A cleartext transmission vulnerability exists in the WEBVIEW-M functionality of Socomec DIRIS... Moderate Unreviewed

CVE-2024-48894 was published Dec 1, 2025

Kerlink gateways running KerOS prior to version 5.10 expose their web interface exclusively over... Moderate Unreviewed

CVE-2024-32384 was published Dec 1, 2025

Eximbills Enterprise 4.1.5 (Built on 2020-10-30) is vulnerable to authenticated stored cross-site... Moderate Unreviewed

CVE-2025-64030 was published Dec 1, 2025

A session fixation vulnerability exists in Blood Bank Management System 1.0 in login.php that... Moderate Unreviewed

CVE-2025-63529 was published Dec 1, 2025

FeehiCMS version 2.1.1 fails to enforce server-side immutability for parameters that are... Moderate Unreviewed

CVE-2025-63523 was published Dec 1, 2025

Cross Site Scripting (XSS) vulnerability in FeehiCMS 2.1.1 via the id parameter of the User... Moderate Unreviewed

CVE-2025-63520 was published Dec 1, 2025

Reverse Tabnabbing vulnerability in FeehiCMS 2.1.1 in the Comments Management function Moderate Unreviewed

CVE-2025-63522 was published Dec 1, 2025

An authenticated Zabbix Super Admin can exploit the oauth.authorize action to read arbitrary... Moderate Unreviewed

CVE-2025-27232 was published Dec 1, 2025

An authenticated Zabbix user (including Guest) is able to cause disproportionate CPU load on the... Moderate Unreviewed

CVE-2025-49643 was published Dec 1, 2025

Library loading on AIX Zabbix Agent builds can be hijacked by local users with write access to... Moderate Unreviewed

CVE-2025-49642 was published Dec 1, 2025

An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the... Moderate Unreviewed

CVE-2025-41739 was published Dec 1, 2025

Open redirect in the web server component of MiR Robot and Fleet software allows a remote... Moderate Unreviewed

CVE-2025-13819 was published Dec 1, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

133,027 advisories