Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,501 advisories

Loading
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Incorrect Access Control in the... Moderate Unreviewed
CVE-2025-50405 was published Jul 1, 2025
A vulnerability classified as critical was found in code-projects Library System 1.0. Affected by... Moderate Unreviewed
CVE-2025-6837 was published Jun 29, 2025
A vulnerability has been found in code-projects Library System 1.0 and classified as critical.... Moderate Unreviewed
CVE-2025-6900 was published Jun 30, 2025
A vulnerability, which was classified as critical, has been found in code-projects Simple Forum 1... Moderate Unreviewed
CVE-2025-6848 was published Jun 29, 2025
A vulnerability, which was classified as critical, has been found in SourceCodester Simple... Moderate Unreviewed
CVE-2025-6873 was published Jun 30, 2025
A vulnerability was found in SourceCodester Simple Company Website 1.0. It has been rated as... Moderate Unreviewed
CVE-2025-6870 was published Jun 29, 2025
A vulnerability classified as critical was found in SourceCodester Simple Company Website 1.0.... Moderate Unreviewed
CVE-2025-6872 was published Jun 29, 2025
The MIB3 infotainment unit used in Skoda and Volkswagen vehicles does not incorporate any... Moderate Unreviewed
CVE-2023-29113 was published Jun 28, 2025
There is no memory isolation between CPU cores of the MIB3 infotainment. This fact allows an... Moderate Unreviewed
CVE-2023-28907 was published Jun 28, 2025
D-Link DIR-823-Pro 1.02 has improper permission control, allowing unauthorized users to turn on... Moderate Unreviewed
CVE-2025-45729 was published Jun 27, 2025
A vulnerability, which was classified as critical, was found in zzskzy Warehouse Refinement... Moderate Unreviewed
CVE-2025-2115 was published Mar 9, 2025
A vulnerability, which was classified as critical, was found in SourceCodester Simple Food... Moderate Unreviewed
CVE-2025-6161 was published Jun 17, 2025
It technically possible for a user to upload a file to a conversation despite the file upload... Moderate Unreviewed
CVE-2025-3518 was published Apr 22, 2025
A vulnerability was found in ageerle ruoyi-ai 2.0.0 and classified as critical. Affected by this... Moderate Unreviewed
CVE-2025-6466 was published Jun 22, 2025
A vulnerability classified as critical was found in Campcodes Online Recruitment Management... Moderate Unreviewed
CVE-2025-6422 was published Jun 22, 2025
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura... Moderate Unreviewed
CVE-2022-42816 was published Jan 11, 2024
Alkacon OpenCMS Improper Access Control via system/workplace/views/admin/admin-main.jsp Moderate
CVE-2006-3935 was published for org.opencms:opencms-core (Maven) May 1, 2022
A vulnerability was found in FLIR AX8 up to 1.46. It has been declared as critical. This... Moderate Unreviewed
CVE-2025-6266 was published Jun 19, 2025
HCL DRYiCE MyXalytics is impacted by improper access control (Unauthenticated File Download)... Moderate Unreviewed
CVE-2023-50344 was published Jan 3, 2024
An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID... Moderate Unreviewed
CVE-2021-46903 was published Feb 4, 2024
D-Link R15 before v1.08.02 was discovered to contain no firewall restrictions for IPv6 traffic.... Moderate Unreviewed
CVE-2023-41603 was published Jan 10, 2024
This issue was addressed by removing the vulnerable code. This issue is fixed in tvOS 17, watchOS... Moderate Unreviewed
CVE-2023-40528 was published Jan 23, 2024
Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate;... Moderate Unreviewed
CVE-2009-2631 was published May 2, 2022
ScaleFusion 10.5.2 does not properly limit users to the Edge application because Alt-F4 can be used. Moderate Unreviewed
CVE-2023-51751 was published Jan 11, 2024
A vulnerability was found in Tmall Demo up to 20250505. It has been classified as critical. This... Moderate Unreviewed
CVE-2025-5130 was published May 24, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database