GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,031
Composer 5,080
Erlang 39
GitHub Actions 38
Go 2,750
Maven 6,169
npm 4,355
NuGet 765
pip 4,115
Pub 12
RubyGems 960
Rust 1,069
Swift 45

Unreviewed advisories

All unreviewed 280,710

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

145,581 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Convercent Whistleblowing Platform operated by EQS Group exposes an unauthenticated API... Moderate Unreviewed

CVE-2025-34411 was published Dec 15, 2025

The User Registration & Membership – Custom Registration Form Builder, Custom Login Form, User... Moderate Unreviewed

CVE-2025-13367 was published Dec 15, 2025

The Royal Addons for Elementor WordPress plugin before 1.7.1037 does not have proper... Moderate Unreviewed

CVE-2025-11363 was published Dec 15, 2025

The HelloLeads CRM Form Shortcode WordPress plugin through 1.0 does not have authorisation and... Moderate Unreviewed

CVE-2025-12696 was published Dec 14, 2025

Improper neutralization of input during web page generation ('Cross-site Scripting') (CWE-79)... Moderate Unreviewed

CVE-2025-37732 was published Dec 15, 2025

Zohocorp ManageEngine ADManager Plus versions before 8025 are vulnerable to NTLM Hash Exposure. ... Moderate Unreviewed

CVE-2025-11670 was published Dec 15, 2025

Improper Authentication in Elasticsearch PKI realm can lead to user impersonation via specially... Moderate Unreviewed

CVE-2025-37731 was published Dec 15, 2025

A vulnerability was detected in FantasticLBP Hotels Server up to... Moderate Unreviewed

CVE-2025-14710 was published Dec 15, 2025

A flaw has been found in FantasticLBP Hotels Server up to... Moderate Unreviewed

CVE-2025-14711 was published Dec 15, 2025

A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc... Moderate Unreviewed

CVE-2024-12087 was published Jan 14, 2025

A vulnerability has been found in Shiguangwu sgwbox N3 2.0.25. The affected element is an unknown... Moderate Unreviewed

CVE-2025-14703 was published Dec 15, 2025

A flaw has been found in Smartbit CommV Smartschool App up to 10.4.4. Impacted is an unknown... Moderate Unreviewed

CVE-2025-14702 was published Dec 15, 2025

In the Eclipse OMR compiler component, since release 0.7.0, an optimization enabled for Eclipse... Moderate Unreviewed

CVE-2025-14549 was published Dec 15, 2025

The Lightweight Accordion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-13740 was published Dec 15, 2025

A vulnerability was found in Shiguangwu sgwbox N3 2.0.25. The impacted element is an unknown... Moderate Unreviewed

CVE-2025-14704 was published Dec 15, 2025

A vulnerability was found in ketr JEPaaS up to 7.2.8. This impacts the function readAllPostil of... Moderate Unreviewed

CVE-2025-14694 was published Dec 15, 2025

A security vulnerability has been detected in Municorn FAX App 3.27.0 on Android. This... Moderate Unreviewed

CVE-2025-14699 was published Dec 15, 2025

A vulnerability was determined in SamuNatsu HaloBot up to... Moderate Unreviewed

CVE-2025-14695 was published Dec 15, 2025

A security flaw has been discovered in Shenzhen Sixun Software Sixun Shanghui Group Business... Moderate Unreviewed

CVE-2025-14697 was published Dec 15, 2025

A vulnerability was identified in Shenzhen Sixun Software Sixun Shanghui Group Business... Moderate Unreviewed

CVE-2025-14696 was published Dec 15, 2025

A weakness has been identified in atlaszz AI Photo Team Galleryit App 1.3.8.2 on Android. This... Moderate Unreviewed

CVE-2025-14698 was published Dec 15, 2025

The issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.8... Moderate Unreviewed

CVE-2025-43482 was published Dec 12, 2025

A flaw has been found in Mayan EDMS up to 4.10.1. The impacted element is an unknown function of... Moderate Unreviewed

CVE-2025-14692 was published Dec 15, 2025

openrsync through 0.5.0, as used in OpenBSD through 7.8 and on other platforms, allows a client... Moderate Unreviewed

CVE-2025-67901 was published Dec 15, 2025

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager... Moderate Unreviewed

CVE-2025-13281 was published Dec 15, 2025

Previous 12…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

145,581 advisories