Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,893
Erlang
38
GitHub Actions
38
Go
2,550
Maven
5,000+
npm
4,222
NuGet
745
pip
3,998
Pub
12
RubyGems
953
Rust
1,039
Swift
45
Unreviewed advisories
All unreviewed
5,000+

139,809 advisories

Loading
Insecure direct object reference (IDOR) vulnerability in Publications in Liferay Portal 7.4.1... Moderate Unreviewed
CVE-2025-62243 was published Oct 13, 2025
Insecure direct object reference (IDOR) vulnerability in Publications in Liferay Portal 7.3.1... Moderate Unreviewed
CVE-2025-62244 was published Oct 13, 2025
CommandKit has incorrect command name exposure in context object for message command aliases Moderate
GHSA-fhwm-pc6r-4h2f was published for commandkit (npm) Oct 13, 2025
twlite notunderctrl
Credited to twlite and notunderctrl
SupportAssist for Home PCs versions 4.8.2 and prior and SupportAssist for Business PCs versions 4... Moderate Unreviewed
CVE-2025-43991 was published Oct 13, 2025
A null pointer dereference has been identified in the AsIO3.sys driver. The vulnerability can be... Moderate Unreviewed
CVE-2025-9337 was published Oct 13, 2025
A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be... Moderate Unreviewed
CVE-2025-9336 was published Oct 13, 2025
Cross-site scripting vulnerability in QGIS QWC2 Registration GUI <=v2025.03.31 allows an... Moderate Unreviewed
CVE-2025-11184 was published Oct 13, 2025
Cross-Site Scripting vulnerability in attribute table in QGIS QWC2 <2025.08.14 allows an... Moderate Unreviewed
CVE-2025-11183 was published Oct 13, 2025
A vulnerability was determined in code-projects Automated Voting System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-11668 was published Oct 13, 2025
SOOP-CLM developed by PiExtract has a Server-Side Request Forgery vulnerability, allowing... Moderate Unreviewed
CVE-2025-11674 was published Oct 13, 2025
Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication... Moderate Unreviewed
CVE-2025-11672 was published Oct 13, 2025
Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication... Moderate Unreviewed
CVE-2025-11671 was published Oct 13, 2025
A vulnerability was detected in D-Link DAP-2695 2.00RC131. This affects the function... Moderate Unreviewed
CVE-2025-11665 was published Oct 13, 2025
Ericsson Network Manager (ENM) versions prior to ENM 25.1 GA contain a vulnerability, if... Moderate Unreviewed
CVE-2025-27258 was published Oct 13, 2025
A security vulnerability has been detected in Campcodes Online Beauty Parlor Management System 1... Moderate Unreviewed
CVE-2025-11664 was published Oct 13, 2025
A vulnerability was found in code-projects Automated Voting System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-11667 was published Oct 13, 2025
A weakness has been identified in Campcodes Online Beauty Parlor Management System 1.0. The... Moderate Unreviewed
CVE-2025-11663 was published Oct 13, 2025
A vulnerability has been found in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11660 was published Oct 13, 2025
A flaw has been found in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11659 was published Oct 13, 2025
HCL Unica Campaign 12.1.10 is vulnerable to Reflected Cross-Site Scripting (XSS) where an... Moderate Unreviewed
CVE-2025-31994 was published Oct 13, 2025
A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. Impacted... Moderate Unreviewed
CVE-2025-11662 was published Oct 13, 2025
A vulnerability was found in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11661 was published Oct 13, 2025
HCL Unica Platform is affected by unprotected files due to improper access controls.  These... Moderate Unreviewed
CVE-2025-31996 was published Oct 13, 2025
A vulnerability was detected in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11658 was published Oct 13, 2025
A security flaw has been discovered in Total.js Flow up to... Moderate Unreviewed
CVE-2025-11655 was published Oct 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database