GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,424
Composer 4,951
Erlang 39
GitHub Actions 38
Go 2,607
Maven 6,068
npm 4,252
NuGet 757
pip 4,017
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,283

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,750 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability was found in quequnlong shiyi-blog up to 1.2.1. This impacts an unknown function... Moderate Unreviewed

CVE-2025-12305 was published Oct 27, 2025

A vulnerability was found in ChurchCRM up to 5.18.0. This vulnerability affects unknown code of... Moderate Unreviewed

CVE-2025-11938 was published Oct 19, 2025

Lack of Input Validation in the web UI might lead to potential exploitation.This issue affects... Moderate Unreviewed

CVE-2025-12284 was published Oct 26, 2025

Logout Functionality not Working.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1... Moderate Unreviewed

CVE-2025-12278 was published Oct 26, 2025

The Advanced Database Cleaner plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2025-11497 was published Oct 25, 2025

An improper input validation in the Security Dashboard ignored-tasks API of Devolutions Server... Moderate Unreviewed

CVE-2025-11958 was published Oct 22, 2025

Cisco IOS XR 3.4.0 through 3.9.1, when BGP is enabled, does not properly handle unrecognized... Moderate Unreviewed

CVE-2010-3035 was published May 17, 2022

Cisco IOS XR 3.4.0 through 3.8.1 allows remote attackers to cause a denial of service (session... Moderate Unreviewed

CVE-2009-2055 was published May 2, 2022

Microsoft Silverlight 5 before 5.1.20913.0 does not properly validate pointers during access to... Moderate Unreviewed

CVE-2013-3896 was published May 14, 2022

JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 4.3.0 for Red Hat... Moderate Unreviewed

CVE-2010-1871 was published May 17, 2022

Microsoft WordPad Information Disclosure Vulnerability Moderate Unreviewed

CVE-2023-36563 was published Oct 10, 2023

Assuming radio permission is gained, missing input validation in modem interface driver prior to... Moderate Unreviewed

CVE-2021-25489 was published May 24, 2022

Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18... Moderate Unreviewed

CVE-2020-8195 was published May 24, 2022

A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it... Moderate Unreviewed

CVE-2020-0618 was published May 24, 2022

Microsoft Word Information Disclosure Vulnerability Moderate Unreviewed

CVE-2023-36761 was published Sep 12, 2023

A path traversal vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023... Moderate Unreviewed

CVE-2023-41266 was published Aug 30, 2023

Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 104.0... Moderate Unreviewed

CVE-2022-2856 was published Sep 27, 2022

Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 95.0... Moderate Unreviewed

CVE-2021-38000 was published Nov 24, 2021

A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP... Moderate Unreviewed

CVE-2016-8562 was published May 13, 2022

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software... Moderate Unreviewed

CVE-2020-3452 was published May 24, 2022

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type... Moderate Unreviewed

CVE-2020-1020 was published May 24, 2022

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type... Moderate Unreviewed

CVE-2020-0938 was published May 24, 2022

The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow... Moderate Unreviewed

CVE-2016-3718 was published May 14, 2022

In onCreate of NotificationAccessConfirmationActivity.java, there is a possible way to trick the... Moderate Unreviewed

CVE-2022-20350 was published Aug 11, 2022

A vulnerability was determined in jeecgboot JimuReport up to 2.1.1. Affected by this issue is... Moderate Unreviewed

CVE-2025-8963 was published Aug 14, 2025

Previous1…190 Next

Previous 1 2 3 4 5 … 189 190 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,750 advisories