GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,960
Composer 4,783
Erlang 36
GitHub Actions 29
Go 2,353
Maven 5,667
npm 3,977
NuGet 720
pip 3,774
Pub 12
RubyGems 923
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,532

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

132,767 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An unauthenticated attacker may perform a limited server side request forgery (SSRF), forcing the... Moderate Unreviewed

CVE-2024-51980 was published Jun 26, 2025

An unauthenticated attacker may perform a blind server side request forgery (SSRF), due to a CLRF... Moderate Unreviewed

CVE-2024-51981 was published Jun 26, 2025

NVIDIA AIStore contains a vulnerability in the AIS Operator where a user may gain elevated k8s... Moderate Unreviewed

CVE-2025-23260 was published Jun 26, 2025

A vulnerability classified as problematic was found in code-projects School Fees Payment System 1... Moderate Unreviewed

CVE-2025-6569 was published Jun 26, 2025

PHPGurukul Online DJ Booking Management System 2.0 is vulnerable to Insecure Direct Object... Moderate Unreviewed

CVE-2025-50693 was published Jun 26, 2025

A vulnerability was found in Campcodes Online Recruitment Management System 1.0. It has been... Moderate Unreviewed

CVE-2025-6567 was published Jun 26, 2025

A vulnerability, which was classified as critical, has been found in PHPGurukul Hospital... Moderate Unreviewed

CVE-2025-6570 was published Jun 26, 2025

PHPGurukul Online DJ Booking Management System 2.0 is vulnerable to Cross Site Scripting (XSS) in... Moderate Unreviewed

CVE-2025-50695 was published Jun 26, 2025

PHPGurukul Online DJ Booking Management System 2.0 is vulnerable to Cross Site Scripting (XSS) in... Moderate Unreviewed

CVE-2025-50699 was published Jun 26, 2025

A flaw was found in the libssh library. An out-of-bounds read can be triggered in the sftp_handle... Moderate Unreviewed

CVE-2025-5318 was published Jun 26, 2025

A vulnerability was found in oatpp Oat++ up to 1.3.1. It has been declared as critical. This... Moderate Unreviewed

CVE-2025-6566 was published Jun 26, 2025

When a link can be opened in an external application, Firefox for Android will, by default,... Moderate Unreviewed

CVE-2025-6431 was published Jun 26, 2025

The exception page for the HTTPS-Only feature, displayed when a website is opened via HTTP,... Moderate Unreviewed

CVE-2025-6434 was published Jun 26, 2025

An attacker who enumerated resources from the WebCompat extension could have obtained a... Moderate Unreviewed

CVE-2025-6425 was published Jun 26, 2025

When a URL was provided in a link querystring parameter, Firefox for Android would follow that... Moderate Unreviewed

CVE-2025-6428 was published Jun 26, 2025

When a file download is specified via the `Content-Disposition` header, that directive would be... Moderate Unreviewed

CVE-2025-6430 was published Jun 26, 2025

Firefox could have incorrectly parsed a URL and rewritten it to the youtube.com domain when... Moderate Unreviewed

CVE-2025-6429 was published Jun 26, 2025

A vulnerability was found in java-aodeng Hope-Boot 1.0.0. It has been classified as problematic.... Moderate Unreviewed

CVE-2025-6552 was published Jun 26, 2025

A vulnerability has been found in Tarantool up to 3.3.1 and classified as problematic. Affected... Moderate Unreviewed

CVE-2025-6536 was published Jun 26, 2025

A vulnerability has been found in xxyopen/201206030 novel-plus up to 5.1.3 and classified as... Moderate Unreviewed

CVE-2025-6535 was published Jun 26, 2025

A vulnerability was found in java-aodeng Hope-Boot 1.0.0 and classified as problematic. This... Moderate Unreviewed

CVE-2025-6551 was published Jun 26, 2025

The Conference Scheduler plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-5258 was published Jun 26, 2025

Successful exploitation of the vulnerability could allow an attacker to consume all available... Moderate Unreviewed

CVE-2025-48462 was published Jun 26, 2025

Successful exploitation of the vulnerability could allow an unauthenticated attacker to conduct... Moderate Unreviewed

CVE-2025-48461 was published Jun 26, 2025

Successful exploitation of the vulnerability could allow an attacker to cause repeated reboots,... Moderate Unreviewed

CVE-2025-48467 was published Jun 26, 2025

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

132,767 advisories