Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,715
Erlang
34
GitHub Actions
28
Go
2,302
Maven
5,000+
npm
3,946
NuGet
711
pip
3,716
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+

130,945 advisories

Loading
IBM Security Guardium 12.0 could allow an authenticated user to obtain sensitive information due... Moderate Unreviewed
CVE-2025-25026 was published May 28, 2025
IBM Security Guardium 12.0 could allow a remote attacker to obtain sensitive information when a... Moderate Unreviewed
CVE-2025-25025 was published May 28, 2025
IBM Security Guardium 12.0 could allow a privileged user to download any file on the system due... Moderate Unreviewed
CVE-2025-25029 was published May 28, 2025
On affected platforms running Arista EOS, ingress traffic on Layer 2 ports may, under certain... Moderate Unreviewed
CVE-2024-11185 was published May 28, 2025
IBM DS8900F and DS8A00 Hardware Management Console (HMC) is vulnerable to stored cross-site... Moderate Unreviewed
CVE-2024-45094 was published May 28, 2025
On affected platforms with hardware IPSec support running Arista EOS with IPsec enabled and anti... Moderate Unreviewed
CVE-2025-2796 was published May 28, 2025
A flaw was found in Stackrox, where it is vulnerable to Cross-site scripting (XSS) if the script... Moderate Unreviewed
CVE-2025-5198 was published May 27, 2025
A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap... Moderate Unreviewed
CVE-2025-5278 was published May 27, 2025
ZKTeco BioTime allows unauthenticated attackers to enumerate usernames and log in as any user... Moderate Unreviewed
CVE-2024-13966 was published May 27, 2025
code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting (XSS) via... Moderate Unreviewed
CVE-2025-46173 was published May 27, 2025
Laravel Rest Api has a Search Validation Bypass Moderate
GHSA-69rh-hccr-cxrj was published for lomkit/laravel-rest-api (Composer) May 27, 2025
A vulnerability has been found in PHPGurukul News Portal Project 4.1 and classified as critical.... Moderate Unreviewed
CVE-2025-5249 was published May 27, 2025
A vulnerability was found in PHPGurukul News Portal Project 4.1 and classified as critical.... Moderate Unreviewed
CVE-2025-5250 was published May 27, 2025
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a... Moderate Unreviewed
CVE-2025-23247 was published May 27, 2025
A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been classified as... Moderate Unreviewed
CVE-2025-5251 was published May 27, 2025
A vulnerability was found in PHPGurukul News Portal Project 4.1. It has been declared as critical... Moderate Unreviewed
CVE-2025-5252 was published May 27, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Company Visitor... Moderate Unreviewed
CVE-2025-5248 was published May 27, 2025
In the function process_crypto_cmd, the values of ptrs[i] can be potentially equal to NULL which... Moderate Unreviewed
CVE-2025-27701 was published May 27, 2025
Strapi allows Server-Side Request Forgery in Webhook function Moderate
CVE-2024-52588 was published for @strapi/admin (npm) May 27, 2025
khoiminhvo32 derrickmehaffy
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-3704 was published May 27, 2025
A vulnerability, which was classified as critical, has been found in Gowabby HFish 0.1. This... Moderate Unreviewed
CVE-2025-5247 was published May 27, 2025
A vulnerability classified as critical has been found in GNU Binutils up to 2.44. This affects... Moderate Unreviewed
CVE-2025-5245 was published May 27, 2025
A vulnerability classified as critical was found in Campcodes Online Hospital Management System 1... Moderate Unreviewed
CVE-2025-5246 was published May 27, 2025
Memory safety bugs present in Firefox 138, Thunderbird 138, Firefox ESR 128.10, and Thunderbird... Moderate Unreviewed
CVE-2025-5268 was published May 27, 2025
Due to insufficient escaping of the ampersand character in the “Copy as cURL” feature, an... Moderate Unreviewed
CVE-2025-5265 was published May 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database