GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,783
Composer 4,757
Erlang 35
GitHub Actions 29
Go 2,327
Maven 5,611
npm 3,960
NuGet 712
pip 3,741
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,478

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

258,478 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Missing Authorization in Lablup's BackendAI allows attackers to takeover all active sessions;... High Unreviewed

CVE-2025-49651 was published Jun 9, 2025

Exposure of sensitive data in active sessions in Lablup's BackendAI allows attackers to retrieve... High Unreviewed

CVE-2025-49653 was published Jun 9, 2025

A vulnerability was found in jsnjfz WebStack-Guns 1.0. It has been declared as problematic.... Moderate Unreviewed

CVE-2025-5888 was published Jun 9, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-49280 was published Jun 9, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-49279 was published Jun 9, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-49276 was published Jun 9, 2025

Path Traversal vulnerability in Mikado-Themes MediClinic allows PHP Local File Inclusion. This... High Unreviewed

CVE-2025-49295 was published Jun 9, 2025

Path Traversal vulnerability in Mikado-Themes Grill and Chow allows PHP Local File Inclusion.... High Unreviewed

CVE-2025-49297 was published Jun 9, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-49281 was published Jun 9, 2025

Path Traversal vulnerability in Mikado-Themes GrandPrix allows PHP Local File Inclusion. This... High Unreviewed

CVE-2025-49296 was published Jun 9, 2025

A vulnerability was found in Emlog up to 2.5.7 and classified as problematic. This issue affects... Moderate Unreviewed

CVE-2025-5886 was published Jun 9, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-49282 was published Jun 9, 2025

A Host Header injection vulnerability in the password reset function of VigyBag Open Source... Moderate Unreviewed

CVE-2024-46452 was published Jun 9, 2025

An issue in KeeperChat IOS Application v.5.8.8 allows a physically proximate attacker to escalate... Moderate Unreviewed

CVE-2025-29627 was published Jun 9, 2025

A stored cross-site scripting (XSS) vulnerability in Anchor CMS v0.12.7 allows attackers to... Moderate Unreviewed

CVE-2025-46041 was published Jun 9, 2025

Vigybag v1.0 and before is vulnerable to Cross Site Scripting (XSS) via the upload profile... Moderate Unreviewed

CVE-2025-45002 was published Jun 9, 2025

react-native-keys 0.7.11 is vulnerable to sensitive information disclosure (remote) as encryption... High Unreviewed

CVE-2025-45001 was published Jun 9, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-49275 was published Jun 9, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-48143 was published Jun 9, 2025

Incorrect Privilege Assignment vulnerability in Holest Engineering Spreadsheet Price Changer for... Critical Unreviewed

CVE-2025-48129 was published Jun 9, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-48130 was published Jun 9, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-49277 was published Jun 9, 2025

Missing Authorization vulnerability in relentlo StyleAI allows Accessing Functionality Not... Moderate Unreviewed

CVE-2025-48139 was published Jun 9, 2025

Missing Authorization vulnerability in WP Swings Membership For WooCommerce allows Accessing... High Unreviewed

CVE-2025-49265 was published Jun 9, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-48126 was published Jun 9, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

258,478 advisories