Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,840
Erlang
36
GitHub Actions
33
Go
2,463
Maven
5,000+
npm
4,082
NuGet
723
pip
3,880
Pub
12
RubyGems
943
Rust
1,011
Swift
39
Unreviewed advisories
All unreviewed
5,000+

135,922 advisories

Loading
A vulnerability was identified in PHPGurukul User Management System 1.0. This vulnerability... Moderate Unreviewed
CVE-2025-9302 was published Aug 21, 2025
A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0.... Moderate Unreviewed
CVE-2025-9305 was published Aug 21, 2025
A weakness has been identified in SourceCodester Online Bank Management System 1.0. Impacted is... Moderate Unreviewed
CVE-2025-9304 was published Aug 21, 2025
DIAEnergie - Reflected Cross-site Scripting Moderate Unreviewed
CVE-2025-57701 was published Aug 18, 2025
DIAEnergie - Reflected Cross-site Scripting Moderate Unreviewed
CVE-2025-57703 was published Aug 18, 2025
An issue was discovered in Commvault before 11.36.60. A security vulnerability has been... Moderate Unreviewed
CVE-2025-57791 was published Aug 20, 2025
A vulnerability has been found in SourceCodester Cashier Queuing System 1.0. Affected is an... Moderate Unreviewed
CVE-2025-8973 was published Aug 14, 2025
The service executable path in Seagate Toolkit on Versions prior to 2.34.0.33 on Windows allows... Moderate Unreviewed
CVE-2025-9043 was published Aug 14, 2025
Mattermost Fails to Validate File Paths Moderate
CVE-2025-36530 was published for github.com/mattermost/mattermost-server (Go) Aug 21, 2025
go-viper's mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data Moderate
GHSA-2464-8j7c-4cjm was published for github.com/go-viper/mapstructure/v2 (Go) Aug 21, 2025
cipherboy
Liferay Portal Vulnerable to Cross-Site Scripting via DDMPortlet_definition Parameter Moderate
CVE-2025-43757 was published for com.liferay.portal:release.portal.bom (Maven) Aug 20, 2025
Liferay Portal Vulnerable to Cross-Site Scripting in Dynamic Data Mapping Moderate
CVE-2025-43746 was published for com.liferay.portal:release.portal.bom (Maven) Aug 20, 2025
The Bible SuperSearch plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-8064 was published Aug 21, 2025
A security vulnerability has been detected in Emlog Pro up to 2.5.18. This affects an unknown... Moderate Unreviewed
CVE-2025-9296 was published Aug 21, 2025
Improper access control vulnerability in M-Files Aino in versions before 24.10 allowed an... Moderate Unreviewed
CVE-2024-11176 was published Nov 20, 2024
Group-Office versions prior to 6.8.119 and prior to 25.0.20 provided by Intermesh BV contain a... Moderate Unreviewed
CVE-2025-53505 was published Aug 21, 2025
The SlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) plugin for WordPress is... Moderate Unreviewed
CVE-2025-8607 was published Aug 21, 2025
Group-Office versions prior to 6.8.119 and prior to 25.0.20 provided by Intermesh BV contain a... Moderate Unreviewed
CVE-2025-53504 was published Aug 21, 2025
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-7221 was published Aug 21, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed
CVE-2025-48355 was published Aug 21, 2025
n8n symlink traversal vulnerability in "Read/Write File" node allows access to restricted files Moderate
CVE-2025-57749 was published for n8n (npm) Aug 20, 2025
Mahmoud0x00
A vulnerability classified as critical was found in Ruijie RG-UAC 1.0. Affected by this... Moderate Unreviewed
CVE-2024-6184 was published Jun 20, 2024
A vulnerability has been found in Ruijie RG-UAC 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2024-6187 was published Jun 20, 2024
A vulnerability, which was classified as critical, was found in Ruijie RG-UAC 1.0. This affects... Moderate Unreviewed
CVE-2024-6186 was published Jun 20, 2024
A vulnerability has been found in Ruijie RG-UAC 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2024-6269 was published Jun 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database