Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,732
Erlang
35
GitHub Actions
29
Go
2,310
Maven
5,000+
npm
3,949
NuGet
711
pip
3,728
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+

131,025 advisories

Loading
Use after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to... Moderate Unreviewed
CVE-2025-5283 was published May 27, 2025
Inappropriate implementation in Messages in Google Chrome on Android prior to 137.0.7151.55... Moderate Unreviewed
CVE-2025-5066 was published May 27, 2025
Inappropriate implementation in Tab Strip in Google Chrome prior to 137.0.7151.55 allowed a... Moderate Unreviewed
CVE-2025-5067 was published May 27, 2025
A flaw was found in Stackrox, where it is vulnerable to Cross-site scripting (XSS) if the script... Moderate Unreviewed
CVE-2025-5198 was published May 27, 2025
Inappropriate implementation in BFCache in Google Chrome prior to 137.0.7151.55 allowed a remote... Moderate Unreviewed
CVE-2025-5281 was published May 27, 2025
A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap... Moderate Unreviewed
CVE-2025-5278 was published May 27, 2025
code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting (XSS) via... Moderate Unreviewed
CVE-2025-46173 was published May 27, 2025
Inappropriate implementation in FileSystemAccess API in Google Chrome prior to 137.0.7151.55... Moderate Unreviewed
CVE-2025-5065 was published May 27, 2025
Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55... Moderate Unreviewed
CVE-2025-5064 was published May 27, 2025
ZKTeco BioTime allows unauthenticated attackers to enumerate usernames and log in as any user... Moderate Unreviewed
CVE-2024-13966 was published May 27, 2025
Laravel Rest Api has a Search Validation Bypass Moderate
CVE-2025-48490 was published for lomkit/laravel-rest-api (Composer) May 27, 2025
In the function process_crypto_cmd, the values of ptrs[i] can be potentially equal to NULL which... Moderate Unreviewed
CVE-2025-27701 was published May 27, 2025
A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been classified as... Moderate Unreviewed
CVE-2025-5251 was published May 27, 2025
A vulnerability was found in PHPGurukul News Portal Project 4.1 and classified as critical.... Moderate Unreviewed
CVE-2025-5250 was published May 27, 2025
A vulnerability has been found in PHPGurukul News Portal Project 4.1 and classified as critical.... Moderate Unreviewed
CVE-2025-5249 was published May 27, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Company Visitor... Moderate Unreviewed
CVE-2025-5248 was published May 27, 2025
A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been declared as critical... Moderate Unreviewed
CVE-2025-5252 was published May 27, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a... Moderate Unreviewed
CVE-2025-23247 was published May 27, 2025
An issue was discovered in Wi-Fi in Samsung Mobile Processor and Wearable Processor Exynos 980,... Moderate Unreviewed
CVE-2024-49197 was published May 27, 2025
maccms10 v2025.1000.4047 is vulnerable to Server-Side request forgery (SSRF) in Friend Link... Moderate Unreviewed
CVE-2025-45475 was published May 27, 2025
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980,... Moderate Unreviewed
CVE-2025-22377 was published May 27, 2025
There is a possible disclosure of Bluetooth adapter details due to a permissions bypass. This... Moderate Unreviewed
CVE-2024-56193 was published May 27, 2025
Strapi allows Server-Side Request Forgery in Webhook function Moderate
CVE-2024-52588 was published for @strapi/admin (npm) May 27, 2025
khoiminhvo32 derrickmehaffy
A vulnerability, which was classified as critical, has been found in Gowabby HFish 0.1. This... Moderate Unreviewed
CVE-2025-5247 was published May 27, 2025
A vulnerability classified as critical has been found in GNU Binutils up to 2.44. This affects... Moderate Unreviewed
CVE-2025-5245 was published May 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database