GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,755
Composer 4,856
Erlang 36
GitHub Actions 36
Go 2,488
Maven 5,911
npm 4,104
NuGet 735
pip 3,923
Pub 12
RubyGems 945
Rust 1,017
Swift 39

Unreviewed advisories

All unreviewed 268,311

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103,012 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Insufficient bounds checking in AMD TEE (Trusted Execution Environment) could allow an attacker... High Unreviewed

CVE-2021-26383 was published Sep 6, 2025

On-Chip Debug and Test Interface With Improper Access Control and Improper Protection against... High Unreviewed

CVE-2025-9709 was published Sep 5, 2025

In System UI, there is a possible way to view other users' images due to a confused deputy. This... High Unreviewed

CVE-2025-32320 was published Sep 5, 2025

In Skia, there is a possible out of bounds write due to a heap buffer overflow. This could lead... High Unreviewed

CVE-2025-32318 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ericzane Floating Window Music Player allows... High Unreviewed

CVE-2025-48104 was published Sep 5, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-57889 was published Sep 5, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-58206 was published Sep 5, 2025

Path Traversal vulnerability in Stefan Keller WooCommerce Payment Gateway for Saferpay allows... High Unreviewed

CVE-2025-48317 was published Sep 5, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-58214 was published Sep 5, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-53307 was published Sep 5, 2025

Some payload elements of the messages sent between two stations in a networking architecture are... High Unreviewed

CVE-2025-9999 was published Sep 5, 2025

ECOVACS vacuum robot base stations do not validate firmware updates, so malicious over-the-air... High Unreviewed

CVE-2025-30199 was published Sep 5, 2025

In multiple functions of LocationProviderManager.java, there is a possible background activity... High Unreviewed

CVE-2025-26458 was published Sep 5, 2025

In AccessibilityServiceConnection.java, there is a possible background activity launch due to a... High Unreviewed

CVE-2025-26462 was published Sep 5, 2025

In parseHtml of HtmlToSpannedParser.java, there is a possible way to install apps without... High Unreviewed

CVE-2025-26443 was published Sep 5, 2025

In loadDrawableForCookie of ResourcesImpl.java, there is a possible way to access task snapshots... High Unreviewed

CVE-2025-26452 was published Sep 5, 2025

In multiple functions of CameraService.cpp, there is a possible way to use the camera from the... High Unreviewed

CVE-2025-26440 was published Sep 5, 2025

In onInputEvent of IInputMethodSessionWrapper.java, there is a possible way for an untrusted app... High Unreviewed

CVE-2025-26450 was published Sep 5, 2025

In onHandleForceStop of VoiceInteractionManagerService.java, there is a bug that could cause the... High Unreviewed

CVE-2025-26444 was published Sep 5, 2025

In clearAllowBgActivityStarts of PendingIntentRecord.java, there is a possible way for an... High Unreviewed

CVE-2025-26436 was published Sep 5, 2025

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a... High Unreviewed

CVE-2025-26435 was published Sep 5, 2025

In multiple functions of NdkMediaCodec.cpp, there is a possible out of bounds write due to a heap... High Unreviewed

CVE-2025-26455 was published Sep 5, 2025

In createIntentsList of PackageParser.java , there is a possible way to bypass lazy bundle... High Unreviewed

CVE-2025-32312 was published Sep 5, 2025

In getDestinationForApp of SpaAppBridgeActivity, there is a possible cross-user file reveal due... High Unreviewed

CVE-2025-26430 was published Sep 5, 2025

NVIDIA DOCA contains a vulnerability in the collectx-dpeserver Debian package for arm64 that... High Unreviewed

CVE-2025-23258 was published Sep 5, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

103,012 advisories