GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,358
Composer 4,819
Erlang 36
GitHub Actions 32
Go 2,410
Maven 5,802
npm 4,046
NuGet 723
pip 3,842
Pub 12
RubyGems 933
Rust 1,003
Swift 38

Unreviewed advisories

All unreviewed 264,504

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

166 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Sitecore Experience Platform (XP) prior to 8.0 Initial Release (rev. 141212) and Content... Moderate Unreviewed

CVE-2015-10142 was published Jul 25, 2025

A vulnerability was found in Jinher OA 1.1. It has been rated as problematic. This issue affects... Moderate Unreviewed

CVE-2025-7824 was published Jul 19, 2025

A vulnerability was found in Jinher OA 1.2. It has been declared as problematic. This... Moderate Unreviewed

CVE-2025-7823 was published Jul 19, 2025

A vulnerability was found in Jinher OA 1.0 and classified as problematic. Affected by this issue... Moderate Unreviewed

CVE-2025-7523 was published Jul 13, 2025

The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-6691 was published Jul 9, 2025

A vulnerability, which was classified as problematic, has been found in Fengoffice Feng Office 3... Moderate Unreviewed

CVE-2025-5877 was published Jun 9, 2025

CWE-610: Externally Controlled Reference to a Resource in Another Sphere vulnerability exists... High Unreviewed

CVE-2025-2875 was published May 14, 2025

External control of file name or path in Microsoft Defender for Endpoint allows an authorized... Moderate Unreviewed

CVE-2025-26684 was published May 13, 2025

Netskope Client on Mac OS is impacted by a vulnerability in which the postinstall script does not... Moderate Unreviewed

CVE-2024-13177 was published Apr 15, 2025

A vulnerability, which was classified as problematic, was found in zhangyanbo2007 youkefu up to 4... Moderate Unreviewed

CVE-2025-3241 was published Apr 4, 2025

A vulnerability, which was classified as problematic, has been found in crmeb_java up to 1.3.4.... Moderate Unreviewed

CVE-2025-2365 was published Mar 17, 2025

There is a local file inclusion vulnerability in ArcGIS Server 10.9.1 thru 11.3 that may allow a... High Unreviewed

CVE-2024-51961 was published Mar 3, 2025

An authenticated file read vulnerability in the Palo Alto Networks PAN-OS software enables an... High Unreviewed

CVE-2025-0111 was published Feb 12, 2025

A vulnerability, which was classified as problematic, has been found in ywoa up to 2024.07.03.... Moderate Unreviewed

CVE-2025-1225 was published Feb 12, 2025

A externally controlled reference to a resource in another sphere in Fortinet FortiManager before... Moderate Unreviewed

CVE-2022-23439 was published Jan 22, 2025

HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability. An attacker can... High Unreviewed

CVE-2024-42168 was published Jan 11, 2025

Incorrect control of environment variables in PostgreSQL PL/Perl allows an unprivileged database... High Unreviewed

CVE-2024-10979 was published Nov 14, 2024

A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions <= 20240410. This... Moderate Unreviewed

CVE-2024-5823 was published Oct 29, 2024

CVE-2024-45826 IMPACT Due to improper input validation, a path traversal and remote code... High Unreviewed

CVE-2024-45826 was published Sep 12, 2024

In certain highly specific configurations of the host system and MongoDB server binary... Moderate Unreviewed

CVE-2024-8207 was published Aug 27, 2024

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been... Moderate Unreviewed

CVE-2024-7911 was published Aug 18, 2024

Nomad Vulnerable to Allocation Directory Escape On Non-Existing File Paths Through Archive Unpacking Moderate

CVE-2024-7625 was published for github.com/hashicorp/nomad (Go) Aug 15, 2024

A vulnerability exists in the Rockwell Automation Emulate3D™, which could be leveraged to execute... Moderate Unreviewed

CVE-2024-6079 was published Aug 13, 2024

Dell Command | Update, Dell Update, and Alienware Update UWP, versions prior to 5.4, contain an... Moderate Unreviewed

CVE-2024-28962 was published Aug 6, 2024

snapd failed to properly check the destination of symbolic links when extracting a snap Low

CVE-2024-29069 was published for github.com/snapcore/snapd (Go) Jul 25, 2024

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

166 advisories