Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,950
Erlang
39
GitHub Actions
38
Go
2,603
Maven
5,000+
npm
4,250
NuGet
755
pip
4,013
Pub
12
RubyGems
953
Rust
1,048
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,498 advisories

Loading
The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-6680 was published Oct 25, 2025
Improper access control in Azure Event Grid allows an unauthorized attacker to elevate privileges... High Unreviewed
CVE-2025-59273 was published Oct 24, 2025
Improper access control in Azure Notification Service allows an authorized attacker to elevate... High Unreviewed
CVE-2025-59500 was published Oct 24, 2025
Kottster app reinitialization can be re-triggered allowing command injection in development mode High
CVE-2025-62713 was published for @kottster/server (npm) Oct 23, 2025
P0cas
Credited to P0cas
A flaw in the cohort search web service allowed users with permissions in lower contexts to... Moderate Unreviewed
CVE-2025-62395 was published Oct 23, 2025
Moodle course access permissions are not properly checked in course_output_fragment_course_overview Moderate
CVE-2025-62393 was published for moodle/moodle (Composer) Oct 23, 2025
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Block... High Unreviewed
CVE-2025-62290 was published Oct 21, 2025
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Low Unreviewed
CVE-2025-61748 was published Oct 21, 2025
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component:... Moderate Unreviewed
CVE-2025-53071 was published Oct 21, 2025
Vulnerability in the Unified Audit component of Oracle Database Server. Supported versions that... Low Unreviewed
CVE-2025-61749 was published Oct 21, 2025
Vulnerability in the PeopleSoft Enterprise FIN IT Asset Management product of Oracle PeopleSoft ... Moderate Unreviewed
CVE-2025-61758 was published Oct 21, 2025
Vulnerability in the PeopleSoft Enterprise FIN Maintenance Management product of Oracle... Moderate Unreviewed
CVE-2025-61761 was published Oct 21, 2025
Vulnerability in the PeopleSoft Enterprise FIN Payables product of Oracle PeopleSoft (component:... Moderate Unreviewed
CVE-2025-61762 was published Oct 21, 2025
Vulnerability in Oracle Essbase (component: Essbase Web Platform). The supported version that... High Unreviewed
CVE-2025-61763 was published Oct 21, 2025
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are... Moderate Unreviewed
CVE-2025-61881 was published Oct 21, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... High Unreviewed
CVE-2025-61760 was published Oct 21, 2025
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Moderate Unreviewed
CVE-2025-53057 was published Oct 21, 2025
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component:... Moderate Unreviewed
CVE-2025-53061 was published Oct 21, 2025
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... Moderate Unreviewed
CVE-2025-53060 was published Oct 21, 2025
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component:... Moderate Unreviewed
CVE-2025-53064 was published Oct 21, 2025
Vulnerability in the Oracle Workflow product of Oracle E-Business Suite (component: Workflow... Moderate Unreviewed
CVE-2025-53052 was published Oct 21, 2025
Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component:... Moderate Unreviewed
CVE-2025-53058 was published Oct 21, 2025
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component:... Moderate Unreviewed
CVE-2025-53059 was published Oct 21, 2025
Vulnerability in the Oracle Financial Services Revenue Management and Billing product of Oracle... Moderate Unreviewed
CVE-2025-50075 was published Oct 21, 2025
The administrator password setting of the D-Link DIR-820L 1.06B02 is has Improper Access Control... Moderate Unreviewed
CVE-2025-52079 was published Oct 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database