GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,979
Composer 4,785
Erlang 36
GitHub Actions 29
Go 2,358
Maven 5,673
npm 3,979
NuGet 720
pip 3,777
Pub 12
RubyGems 924
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,739

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

122,748 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with... Moderate Unreviewed

CVE-2024-36347 was published Jun 28, 2025

A vulnerability was found in HKUDS LightRAG up to 1.3.8. It has been declared as critical.... Moderate Unreviewed

CVE-2025-6773 was published Jun 27, 2025

A vulnerability classified as critical has been found in xiaoyunjie openvpn-cms-flask up to 1.2.7... Moderate Unreviewed

CVE-2025-6775 was published Jun 27, 2025

A vulnerability, which was classified as problematic, was found in code-projects Food Distributor... Moderate Unreviewed

CVE-2025-6778 was published Jun 27, 2025

A vulnerability, which was classified as critical, has been found in code-projects Food... Moderate Unreviewed

CVE-2025-6777 was published Jun 27, 2025

A vulnerability was found in gooaclok819 sublinkX up to 1.8. It has been rated as critical.... Moderate Unreviewed

CVE-2025-6774 was published Jun 27, 2025

A vulnerability classified as critical was found in xiaoyunjie openvpn-cms-flask up to 1.2.7.... Moderate Unreviewed

CVE-2025-6776 was published Jun 27, 2025

A vulnerability was found in eosphoros-ai db-gpt up to 0.7.2. It has been classified as critical.... Moderate Unreviewed

CVE-2025-6772 was published Jun 27, 2025

During the initial setup of the device the user connects to an access point broadcast by the... Moderate Unreviewed

CVE-2025-6521 was published Jun 27, 2025

Unauthenticated users on an adjacent network with the Sight Bulb Pro can run shell commands as... Moderate Unreviewed

CVE-2025-6522 was published Jun 27, 2025

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Inquiry Management functionality ... Moderate Unreviewed

CVE-2025-50370 was published Jun 27, 2025

A stored blind XSS vulnerability exists in the Contact Page of the Phpgurukul Medical Card... Moderate Unreviewed

CVE-2025-50367 was published Jun 27, 2025

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Manage Card functionality (/mcgs... Moderate Unreviewed

CVE-2025-50369 was published Jun 27, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in ZealousWeb Accept Authorize... Moderate Unreviewed

CVE-2025-53322 was published Jun 27, 2025

A vulnerability classified as critical has been found in sfturing hosp_order up to... Moderate Unreviewed

CVE-2025-6768 was published Jun 27, 2025

Missing Authorization vulnerability in WPManiax WP DB Booster allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-53318 was published Jun 27, 2025

IBM Cloud Pak System 2.3.5.0, 2.3.3.7, 2.3.3.7 iFix1 on Power and 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6... Moderate Unreviewed

CVE-2023-38007 was published Jun 27, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-53325 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in rui_mashita Aioseo Multibyte Descriptions... Moderate Unreviewed

CVE-2025-53327 was published Jun 27, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-53320 was published Jun 27, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-53321 was published Jun 27, 2025

Missing Authorization vulnerability in danbriapps Pre-Publish Post Checklist allows Exploiting... Moderate Unreviewed

CVE-2025-53323 was published Jun 27, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-53336 was published Jun 27, 2025

Missing Authorization vulnerability in pankaj.sakaria CMS Blocks allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-53284 was published Jun 27, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-53279 was published Jun 27, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

122,748 advisories