GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+ Composer
5,000+ Erlang
39 GitHub Actions
38 Go
2,748 Maven
5,000+ npm
4,351 NuGet
765 pip
4,114 Pub
12 RubyGems
960 Rust
1,069 Swift
45Unreviewed advisories
All unreviewed
5,000+Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
11,183 advisories
Filter by severity
Uh oh!
There was an error while loading. Please reload this page.
Malwarebytes 1.0.14 for Linux doesn't properly compute signatures in some scenarios. This allows... Low Unreviewed
CVE-2023-29144 was published Dec 12, 2025
The CleverDisplay BlueOne hardware player is designed with its USB interfaces physically enclosed... Low Unreviewed
CVE-2025-36755 was published Dec 12, 2025
SolarEdge SE3680H has unauthenticated disclosure of sensitive information during the bootloader... Low Unreviewed
CVE-2025-36744 was published Dec 12, 2025
The WP Fastest Cache plugin for WordPress is vulnerable to Server-Side Request Forgery in all... Low Unreviewed
CVE-2025-10583 was published Dec 12, 2025
In JetBrains TeamCity before 2025.11 path traversal was possible via file upload Low Unreviewed
CVE-2025-67742 was published Dec 11, 2025
Multiple constant-time implementations in wolfSSL before version 5.8.4 may be transformed into... Low Unreviewed
CVE-2025-13912 was published Dec 11, 2025
In JetBrains TeamCity before 2025.11 improper access control could expose GitHub App token's... Low Unreviewed
CVE-2025-67740 was published Dec 11, 2025
In JetBrains TeamCity before 2025.11.2 improper repository URL validation could lead to local... Low Unreviewed
CVE-2025-67739 was published Dec 11, 2025
An issue was discovered in Foxit PDF and Editor for Windows before 13.2 and 2025 before 2025.2.... Low Unreviewed
CVE-2025-55307 was published Dec 11, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.6 before 18.4.6, 18... Low Unreviewed
CVE-2025-12734 was published Dec 11, 2025
A weakness has been identified in EFM ipTIME A3004T 14.19.0. This vulnerability affects the... Low Unreviewed
CVE-2025-14485 was published Dec 11, 2025
It was discovered that process_crash() in data/apport in Canonical's Apport crash reporting tool... Low Unreviewed
CVE-2025-5467 was published Dec 10, 2025
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Low Unreviewed
CVE-2025-13127 was published Dec 10, 2025
Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and... Low Unreviewed
CVE-2025-64787 was published Dec 9, 2025
Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and... Low Unreviewed
CVE-2025-64786 was published Dec 9, 2025
Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to... Low Unreviewed
CVE-2025-13743 was published Dec 9, 2025
An improper access control vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6.6.4,... Low Unreviewed
CVE-2025-59923 was published Dec 9, 2025
A direct request ('forced browsing') vulnerability in Fortinet FortiAuthenticator 6.6.0 through 6... Low Unreviewed
CVE-2025-57823 was published Dec 9, 2025
A vulnerability in NETGEAR Nighthawk R7000P routers lets an authenticated admin execute OS... Low Unreviewed
CVE-2025-12945 was published Dec 9, 2025
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP4).... Low Unreviewed
CVE-2025-40818 was published Dec 9, 2025
A post-authentication flaw in the network two-phase commit protocol used for cross-shard... Low Unreviewed
CVE-2025-14345 was published Dec 9, 2025
IBM QRadar SIEM 7.5 - 7.5.0 UP14 IF01 is affected by an information disclosure vulnerability... Low Unreviewed
CVE-2024-56464 was published Dec 9, 2025
IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could... Low Unreviewed
CVE-2025-36102 was published Dec 9, 2025
A stored cross-site scripting vulnerability exists in the web management interface of the R.V.R.... Low Unreviewed
CVE-2025-65228 was published Dec 8, 2025
phpIPAM v1.7.3 contains a Cross-Site Request Forgery (CSRF) vulnerability in the database export... Low Unreviewed
CVE-2025-60912 was published Dec 8, 2025
ProTip! Advisories are also available from the GraphQL API