Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,952
Erlang
39
GitHub Actions
38
Go
2,612
Maven
5,000+
npm
4,252
NuGet
760
pip
4,027
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

299,834 advisories

Loading
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed
CVE-2025-0879 was published Sep 17, 2025
An issue in Perplexity AI GPT-4 allows a remote attacker to obtain sensitive information via a... Moderate Unreviewed
CVE-2025-50709 was published Sep 17, 2025
A vulnerability was detected in SourceCodester Online Student File Management System 1.0.... Moderate Unreviewed
CVE-2025-10593 was published Sep 17, 2025
Open5GS v2.7.5, prior to commit 67ba7f92bbd7a378954895d96d9d7b05d5b64615, is vulnerable to a NULL... Moderate Unreviewed
CVE-2025-55904 was published Sep 17, 2025
A broken access control vulnerability exists in HPE Aruba Networking EdgeConnect OS (ECOS).... High Unreviewed
CVE-2025-37125 was published Sep 17, 2025
A vulnerability in the HPE Aruba Networking SD-WAN Gateways could allow an unauthenticated remote... High Unreviewed
CVE-2025-37124 was published Sep 17, 2025
A vulnerability in EdgeConnect SD-WAN ECOS could allow an authenticated remote threat actor with... Moderate Unreviewed
CVE-2025-37131 was published Sep 17, 2025
A vulnerability in the cryptographic logic used by HPE Aruba Networking EdgeConnect SD-WAN... High Unreviewed
CVE-2025-37127 was published Sep 17, 2025
A vulnerability in the web API of HPE Aruba Networking EdgeConnect SD-WAN Gateways could allow an... Moderate Unreviewed
CVE-2025-37128 was published Sep 17, 2025
A vulnerable feature in the command line interface of EdgeConnect SD-WAN could allow an... Moderate Unreviewed
CVE-2025-37129 was published Sep 17, 2025
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN Gateways Command Line... High Unreviewed
CVE-2025-37126 was published Sep 17, 2025
A vulnerability in the command-line interface of HPE Aruba Networking EdgeConnect SD-WAN Gateways... High Unreviewed
CVE-2025-37123 was published Sep 17, 2025
A vulnerability in the command-line interface of EdgeConnect SD-WAN could allow an authenticated... Moderate Unreviewed
CVE-2025-37130 was published Sep 17, 2025
An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control... Critical Unreviewed
CVE-2025-56557 was published Sep 16, 2025
by-night sms V1.0 has an Arbitrary File Upload vulnerability. The /api/sms/upload/headImg... High Unreviewed
CVE-2025-56263 was published Sep 16, 2025
In Frappe ERPNext v15.57.5, the function get_stock_balance() at erpnext/stock/utils.py is... High Unreviewed
CVE-2025-52044 was published Sep 16, 2025
An issue in Online Library Management System v.3.0 allows an attacker to escalate privileges via... Critical Unreviewed
CVE-2025-57119 was published Sep 16, 2025
This vulnerability affects Firefox < 143 and Thunderbird < 143. High Unreviewed
CVE-2025-10534 was published Sep 16, 2025
This vulnerability affects Firefox < 143. High Unreviewed
CVE-2025-10535 was published Sep 16, 2025
This vulnerability affects Firefox < 143 and Thunderbird < 143. Moderate Unreviewed
CVE-2025-10531 was published Sep 16, 2025
The issue was addressed with improved input validation. This issue is fixed in tvOS 26, watchOS... High Unreviewed
CVE-2025-43372 was published Sep 16, 2025
This issue was addressed with improved redaction of sensitive information. This issue is fixed in... Low Unreviewed
CVE-2025-43357 was published Sep 16, 2025
The issue was addressed with improved bounds checks. This issue is fixed in macOS Sequoia 15.7,... Moderate Unreviewed
CVE-2025-43353 was published Sep 16, 2025
Kong Insomnia Desktop Application before 11.0.2 contains a template injection vulnerability that... Critical Unreviewed
CVE-2025-1087 was published May 9, 2025
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the importID... Moderate Unreviewed
CVE-2022-43023 was published Oct 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database