GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,393
Composer 4,825
Erlang 36
GitHub Actions 32
Go 2,417
Maven 5,811
npm 4,054
NuGet 723
pip 3,845
Pub 12
RubyGems 933
Rust 1,005
Swift 38

Unreviewed advisories

All unreviewed 264,899

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

124,637 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Vedo Suite 2024.17 is vulnerable to Incorrect Access Control, which allows remote attackers to... Moderate Unreviewed

CVE-2025-51054 was published Aug 6, 2025

A path traversal vulnerability in Vedo Suite 2024.17 allows remote authenticated attackers to... Moderate Unreviewed

CVE-2025-51052 was published Aug 6, 2025

An issue was discovered in 4C Strategies Exonaut 21.6. Passwords, stored in the database, are... Moderate Unreviewed

CVE-2025-46660 was published Aug 6, 2025

A maliciously crafted PSD file, when linked or imported into Autodesk 3ds Max, can force an Out... Moderate Unreviewed

CVE-2025-6632 was published Aug 6, 2025

4C Strategies Exonaut before v22.4 was discovered to contain an access control issue. Moderate Unreviewed

CVE-2024-55402 was published Aug 6, 2025

A Cross-site scripting (XSS) vulnerability in /api_vedo/ in Vedo Suite version 2024.17 allows... Moderate Unreviewed

CVE-2025-51053 was published Aug 6, 2025

4C Strategies Exonaut before v22.4 was discovered to contain insecure permissions. Moderate Unreviewed

CVE-2024-55398 was published Aug 6, 2025

4C Strategies Exonaut before v21.6.2.1-1 was discovered to contain a Server-Side Request Forgery ... Moderate Unreviewed

CVE-2024-55399 was published Aug 6, 2025

A vulnerability, which was classified as critical, has been found in agno-agi agno up to 1.7.5.... Moderate Unreviewed

CVE-2025-8665 was published Aug 6, 2025

A vulnerability in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow... Moderate Unreviewed

CVE-2025-20331 was published Aug 6, 2025

A vulnerability in the meeting-join functionality of Cisco Webex Meetings could have allowed an... Moderate Unreviewed

CVE-2025-20215 was published Aug 6, 2025

A vulnerability, which was classified as critical, was found in SkyworkAI DeepResearchAgent up to... Moderate Unreviewed

CVE-2025-8667 was published Aug 6, 2025

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,... Moderate Unreviewed

CVE-2025-20332 was published Aug 6, 2025

A reflected cross-site scripting (XSS) vulnerability in Sage DPW v2024.12.003 allows attackers to... Moderate Unreviewed

CVE-2025-51531 was published Aug 6, 2025

An attacker with authenticated and privileged access could modify the contents of a non-sensitive... Moderate Unreviewed

CVE-2025-48394 was published Aug 6, 2025

The server identity check mechanism for firmware upgrade performed via command shell is... Moderate Unreviewed

CVE-2025-48393 was published Aug 6, 2025

The filepath.Walk and filepath.WalkDir functions are documented as not following symbolic links,... Moderate Unreviewed

CVE-2024-8244 was published Aug 6, 2025

NVIDIA Triton Inference Server for Windows and Linux and the Tensor RT backend contain a... Moderate Unreviewed

CVE-2025-23335 was published Aug 6, 2025

In Gatling Enterprise versions below 1.25.0, a user logging-out can still use his session token... Moderate Unreviewed

CVE-2025-51306 was published Aug 6, 2025

In Gatling Enterprise versions below 1.25.0, a low-privileged user that does not hold the role ... Moderate Unreviewed

CVE-2025-51308 was published Aug 6, 2025

MCCMS v2.7.0 has an SSRF vulnerability located in the index() method of the sys\apps\controllers... Moderate Unreviewed

CVE-2025-50234 was published Aug 6, 2025

NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python... Moderate Unreviewed

CVE-2025-23333 was published Aug 6, 2025

A weakness identified in OpenText Advanced Authentication where a Malicious browser plugin can... Moderate Unreviewed

CVE-2025-8616 was published Aug 6, 2025

Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used... Moderate Unreviewed

CVE-2025-2028 was published Aug 6, 2025

NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python... Moderate Unreviewed

CVE-2025-23334 was published Aug 6, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

124,637 advisories