GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,204
Composer 4,893
Erlang 38
GitHub Actions 38
Go 2,552
Maven 6,024
npm 4,224
NuGet 746
pip 3,999
Pub 12
RubyGems 953
Rust 1,041
Swift 45

Unreviewed advisories

All unreviewed 273,117

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

129,098 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62392 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62390 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62386 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62384 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62388 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62389 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62391 was published Oct 14, 2025

Liferay Portal 7.3.0 through 7.4.3.119, and Liferay DXP 2023.Q3.1 through 2023.Q3.8, 2023.Q4.0... Moderate Unreviewed

CVE-2025-62251 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62387 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-11623 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62385 was published Oct 14, 2025

SQL injection in Ivanti Endpoint Manager allows a remote authenticated attacker to read arbitrary... Moderate Unreviewed

CVE-2025-62383 was published Oct 14, 2025

A flaw has been found in Portabilis i-Educar up to 2.10. The affected element is an unknown... Moderate Unreviewed

CVE-2025-9721 was published Oct 13, 2025

A vulnerability has been found in Portabilis i-Educar up to 2.10. The impacted element is an... Moderate Unreviewed

CVE-2025-9722 was published Oct 13, 2025

A vulnerability was detected in Portabilis i-Educar up to 2.10. Impacted is an unknown function... Moderate Unreviewed

CVE-2025-9720 was published Oct 13, 2025

A vulnerability was found in Portabilis i-Educar up to 2.10. This affects an unknown function of... Moderate Unreviewed

CVE-2025-9723 was published Oct 13, 2025

SupportAssist for Home PCs versions 4.8.2 and prior and SupportAssist for Business PCs versions 4... Moderate Unreviewed

CVE-2025-43991 was published Oct 13, 2025

A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be... Moderate Unreviewed

CVE-2025-9336 was published Oct 13, 2025

A null pointer dereference has been identified in the AsIO3.sys driver. The vulnerability can be... Moderate Unreviewed

CVE-2025-9337 was published Oct 13, 2025

Cross-site scripting vulnerability in QGIS QWC2 Registration GUI <=v2025.03.31 allows an... Moderate Unreviewed

CVE-2025-11184 was published Oct 13, 2025

A vulnerability was determined in code-projects Automated Voting System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-11668 was published Oct 13, 2025

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication... Moderate Unreviewed

CVE-2025-11671 was published Oct 13, 2025

Uniweb/SoliPACS WebServer developed by EBM Technologies has a Missing Authentication... Moderate Unreviewed

CVE-2025-11672 was published Oct 13, 2025

SOOP-CLM developed by PiExtract has a Server-Side Request Forgery vulnerability, allowing... Moderate Unreviewed

CVE-2025-11674 was published Oct 13, 2025

A security vulnerability has been detected in Campcodes Online Beauty Parlor Management System 1... Moderate Unreviewed

CVE-2025-11664 was published Oct 13, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

129,098 advisories