Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,416
Maven
5,000+
npm
4,054
NuGet
723
pip
3,845
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

124,625 advisories

Loading
A vulnerability was found in Keycloak-services. Special characters used during e-mail... Moderate Unreviewed
CVE-2025-8419 was published Aug 6, 2025
A vulnerability in the web-based management interface of Cisco ISE and Cisco ISE-PIC could allow... Moderate Unreviewed
CVE-2025-20331 was published Aug 6, 2025
A vulnerability in the meeting-join functionality of Cisco Webex Meetings could have allowed an... Moderate Unreviewed
CVE-2025-20215 was published Aug 6, 2025
A vulnerability, which was classified as critical, was found in SkyworkAI DeepResearchAgent up to... Moderate Unreviewed
CVE-2025-8667 was published Aug 6, 2025
A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated,... Moderate Unreviewed
CVE-2025-20332 was published Aug 6, 2025
An attacker with authenticated and privileged access could modify the contents of a non-sensitive... Moderate Unreviewed
CVE-2025-48394 was published Aug 6, 2025
The server identity check mechanism for firmware upgrade performed via command shell is... Moderate Unreviewed
CVE-2025-48393 was published Aug 6, 2025
A vulnerability, which was classified as critical, has been found in agno-agi agno up to 1.7.5.... Moderate Unreviewed
CVE-2025-8665 was published Aug 6, 2025
The SureForms WordPress plugin before 1.7.2 does not sanitise and escape a parameter before... Moderate Unreviewed
CVE-2025-5921 was published Aug 1, 2025
A logic error was addressed with improved error handling. This issue is fixed in macOS Sequoia 15... Moderate Unreviewed
CVE-2025-43276 was published Jul 30, 2025
Arbitrary file read in NetScaler Console and NetScaler SDX (SVM) Moderate Unreviewed
CVE-2025-4365 was published Jun 17, 2025
An attacker can gain application privileges in order to perform limited modification and/or read... Moderate Unreviewed
CVE-2025-1223 was published Feb 20, 2025
An attacker can gain application privileges in order to perform limited modification and/or read... Moderate Unreviewed
CVE-2025-1222 was published Feb 20, 2025
In Jakarta Mail 2.2 it is possible to preform a SMTP Injection by utilizing the \r and \n UTF-8... Moderate Unreviewed
CVE-2025-7962 was published Jul 21, 2025
A vulnerability in a certain REST API endpoint of Cisco Data Center Network Manager (DCNM)... Moderate Unreviewed
CVE-2020-3538 was published Nov 18, 2024
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python... Moderate Unreviewed
CVE-2025-23333 was published Aug 6, 2025
A weakness identified in OpenText Advanced Authentication where a Malicious browser plugin can... Moderate Unreviewed
CVE-2025-8616 was published Aug 6, 2025
The Mobile Access Portal's File Share application is vulnerable to a directory traversal attack,... Moderate Unreviewed
CVE-2024-52885 was published Aug 6, 2025
NVIDIA Triton Inference Server for Windows and Linux and the Tensor RT backend contain a... Moderate Unreviewed
CVE-2025-23335 was published Aug 6, 2025
IBM Guardium Data Protection could allow a remote attacker to obtain sensitive information due to... Moderate Unreviewed
CVE-2025-36020 was published Aug 6, 2025
Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used... Moderate Unreviewed
CVE-2025-2028 was published Aug 6, 2025
NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python... Moderate Unreviewed
CVE-2025-23334 was published Aug 6, 2025
OS command injection vulnerability exists in CL4/6NX Plus and CL4/6NX-J Plus (Japan model) with... Moderate Unreviewed
CVE-2025-22469 was published Aug 6, 2025
CWE-284: Improper Access Control Moderate Unreviewed
CVE-2025-46391 was published Aug 6, 2025
CWE-620: Unverified Password Change Moderate Unreviewed
CVE-2025-46389 was published Aug 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database