Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,894
Erlang
38
GitHub Actions
38
Go
2,552
Maven
5,000+
npm
4,224
NuGet
746
pip
3,999
Pub
12
RubyGems
953
Rust
1,041
Swift
45
Unreviewed advisories
All unreviewed
5,000+

112,524 advisories

Loading
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol... High Unreviewed
CVE-2025-60004 was published Oct 9, 2025
A Missing Authentication for Critical Function vulnerability in Juniper Networks Security... High Unreviewed
CVE-2025-11198 was published Oct 9, 2025
A vulnerability has been found in Tenda W12 3.0.0.6(3948). The affected element is the function... High Unreviewed
CVE-2025-11549 was published Oct 9, 2025
An arbitrary file download vulnerability in the web interface of Juniper Networks Junos Space... High Unreviewed
CVE-2025-59976 was published Oct 9, 2025
A NULL Pointer Dereference vulnerability in the PFE management daemon (evo-pfemand) of Juniper... High Unreviewed
CVE-2025-59967 was published Oct 9, 2025
An Uncontrolled Resource Consumption vulnerability in the HTTP daemon (httpd) of Juniper Networks... High Unreviewed
CVE-2025-59975 was published Oct 9, 2025
An Origin Validation Error vulnerability in an insufficient protected file of Juniper Networks... High Unreviewed
CVE-2025-59957 was published Oct 9, 2025
A Missing Authorization vulnerability in the Juniper Networks Junos Space Security Director... High Unreviewed
CVE-2025-59968 was published Oct 9, 2025
A Use of Uninitialized Resource vulnerability in the Packet Forwarding Engine (PFE) of Juniper... High Unreviewed
CVE-2025-59964 was published Oct 9, 2025
D-Link DIR-816A2_FWv1.10CNB05 was discovered to contain a stack overflow via the... High Unreviewed
CVE-2025-61577 was published Oct 9, 2025
An Uncontrolled Resource Consumption vulnerability in the Connectivity Fault Management (CFM)... High Unreviewed
CVE-2025-52961 was published Oct 9, 2025
A Buffer Copy without Checking Size of Input vulnerability in the Session Initialization... High Unreviewed
CVE-2025-52960 was published Oct 9, 2025
A vulnerability exists in the Progress Flowmon web application prior to version 12.5.5, whereby a... High Unreviewed
CVE-2025-10240 was published Oct 9, 2025
In Flowmon versions prior to 12.5.5, a vulnerability has been identified that allows a user with... High Unreviewed
CVE-2025-10239 was published Oct 9, 2025
A flaw was found in the integration of Active Directory and the System Security Services Daemon ... High Unreviewed
CVE-2025-11561 was published Oct 9, 2025
Lavasoft Web Companion (also known as Ad-Aware WebCompanion) versions 8.9.0.1091 through 12.1.3... High Unreviewed
CVE-2025-45095 was published Oct 9, 2025
Insufficient escaping in the report scheduler within Checkmk <2.4.0p13, <2.3.0p38, <2.2.0p46 and... High Unreviewed
CVE-2025-39664 was published Oct 9, 2025
Use of an insecure temporary directory in the Windows License plugin for the Checkmk Windows... High Unreviewed
CVE-2025-32919 was published Oct 9, 2025
n8n: Execute Command Node Allows Authenticated Users to Run Arbitrary Commands on Host High
GHSA-365g-vjw2-grx8 was published for n8n (npm) Oct 9, 2025
pyLoad CNL and captcha handlers allow Code Injection via unsanitized parameters High
CVE-2025-61773 was published for pyload-ng (pip) Oct 9, 2025
odaysec
Credited to odaysec
GitLab has remediated an issue in GitLab EE affecting all versions from 18.3 to 18.3.4, 18.4 to... High Unreviewed
CVE-2025-11340 was published Oct 9, 2025
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.12 to 18.2.8, 18.3... High Unreviewed
CVE-2025-10004 was published Oct 9, 2025
The Popup builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce... High Unreviewed
CVE-2025-10862 was published Oct 9, 2025
Memory corruption while processing a malformed license file during reboot. High Unreviewed
CVE-2025-27054 was published Oct 9, 2025
Memory corruption while processing camera platform driver IOCTL calls. High Unreviewed
CVE-2025-27048 was published Oct 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database