GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,254
Composer 4,810
Erlang 36
GitHub Actions 31
Go 2,396
Maven 5,778
npm 4,030
NuGet 721
pip 3,820
Pub 12
RubyGems 932
Rust 988
Swift 38

Unreviewed advisories

All unreviewed 263,589

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

134,271 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been declared as critical.... Moderate Unreviewed

CVE-2025-8124 was published Jul 25, 2025

This Medium severity ACE (Arbitrary Code Execution) vulnerability was introduced in version 4.2.8... Moderate Unreviewed

CVE-2025-22165 was published Jul 25, 2025

The ElementsKit Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2025-3614 was published Jul 25, 2025

A vulnerability was found in deerwms deer-wms-2 up to 3.3. It has been classified as critical.... Moderate Unreviewed

CVE-2025-8123 was published Jul 24, 2025

Tenda AC8V4 V16.03.34.06` was discovered to contain stack overflow at /goform/WifiGuestSet. The... Moderate Unreviewed

CVE-2025-51088 was published Jul 24, 2025

Tenda AC8V4 V16.03.34.06` was discovered to contain stack overflow at /goform... Moderate Unreviewed

CVE-2025-51082 was published Jul 24, 2025

A vulnerability has been found in PHPGurukul Taxi Stand Management System 1.0 and classified as... Moderate Unreviewed

CVE-2025-8115 was published Jul 24, 2025

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... Moderate Unreviewed

CVE-2025-7404 was published Jul 24, 2025

Tenda AC8V4 V16.03.34.06` was discovered to contain heap overflow at /goform/GetParentControlInfo... Moderate Unreviewed

CVE-2025-51089 was published Jul 24, 2025

Tenda AC8V4 V16.03.34.06` was discovered to contain stack overflow at /goform/SetSysTimeCfg. The... Moderate Unreviewed

CVE-2025-51085 was published Jul 24, 2025

A group deletion race condition in 2FAuth v5.5.0 causes data inconsistencies and orphaned... Moderate Unreviewed

CVE-2025-45731 was published Jul 24, 2025

SoftPerfect Pty Ltd Connection Quality Monitor v1.1 was discovered to store all credentials in... Moderate Unreviewed

CVE-2025-45702 was published Jul 24, 2025

Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site... Moderate Unreviewed

CVE-2025-47061 was published Jul 24, 2025

Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site... Moderate Unreviewed

CVE-2025-46996 was published Jul 24, 2025

Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site... Moderate Unreviewed

CVE-2025-46993 was published Jul 24, 2025

Redis through 7.4.3 allows memory consumption via a multi-bulk command composed of many bulks,... Moderate Unreviewed

CVE-2025-46686 was published Jul 23, 2025

A URL redirection in Pinokio v3.6.23 allows attackers to redirect victim users to attacker... Moderate Unreviewed

CVE-2025-44109 was published Jul 23, 2025

A URL redirection in lbry-desktop v0.53.9 allows attackers to redirect victim users to attacker... Moderate Unreviewed

CVE-2025-50477 was published Jul 23, 2025

The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free... Moderate Unreviewed

CVE-2025-8058 was published Jul 23, 2025

vBulletin 3.8.7 is vulnerable to a denial-of-service condition via the misc.php?do=buddylist... Moderate Unreviewed

CVE-2025-46171 was published Jul 23, 2025

Mezzanine CMS vulnerable to Cross-site Scripting Moderate

CVE-2025-50481 was published for Mezzanine (pip) Jul 23, 2025

Possible ORM Leak Vulnerability in the Harbor Moderate

CVE-2025-30086 was published for github.com/goharbor/harbor (Go) Jul 23, 2025

A Reflected cross-site scripting (XSS) vulnerability exists in the SMA100 series web interface,... Moderate Unreviewed

CVE-2025-40598 was published Jul 23, 2025

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 transmits sensitive information... Moderate Unreviewed

CVE-2025-33020 was published Jul 23, 2025

IBM Db2 Mirror for i 7.4, 7.5, and 7.6 GUI is affected by cross-site WebSocket hijacking... Moderate Unreviewed

CVE-2025-36116 was published Jul 23, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

134,271 advisories