Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

145,500 advisories

Loading
A vulnerability, which was classified as critical, was found in thinkgem JeeSite up to 5.12.0.... Moderate Unreviewed
CVE-2025-7759 was published Jul 18, 2025
A vulnerability classified as critical was found in PHPGurukul Land Record System 1.0. Affected... Moderate Unreviewed
CVE-2025-7757 was published Jul 17, 2025
A vulnerability classified as problematic has been found in code-projects E-Commerce Site 1.0.... Moderate Unreviewed
CVE-2025-7756 was published Jul 17, 2025
A vulnerability was found in code-projects Online Appointment Booking System 1.0. It has been... Moderate Unreviewed
CVE-2025-7753 was published Jul 17, 2025
A vulnerability was found in code-projects Online Ordering System 1.0. It has been rated as... Moderate Unreviewed
CVE-2025-7755 was published Jul 17, 2025
A SQL injection vulnerability was reported in Lenovo Vantage that could allow a local attacker to... Moderate Unreviewed
CVE-2025-6230 was published Jul 17, 2025
A vulnerability was found in code-projects Patient Record Management System 1.0. It has been... Moderate Unreviewed
CVE-2025-7754 was published Jul 17, 2025
A vulnerability has been found in code-projects Online Appointment Booking System 1.0 and... Moderate Unreviewed
CVE-2025-7751 was published Jul 17, 2025
A vulnerability was found in code-projects Online Appointment Booking System 1.0 and classified... Moderate Unreviewed
CVE-2025-7752 was published Jul 17, 2025
A vulnerability was reported in version 1.0 of the Bluetooth Transmission Alliance protocol... Moderate Unreviewed
CVE-2025-2818 was published Jul 17, 2025
NVIDIA Jetson Linux contains a vulnerability in the kernel where an attacker may cause an... Moderate Unreviewed
CVE-2025-23269 was published Jul 17, 2025
A DLL hijacking vulnerability was reported in TrackPoint Quick Menu software that, under certain... Moderate Unreviewed
CVE-2025-1729 was published Jul 17, 2025
Cross Site Scripting vulnerability in Beakon Software Beakon Learning Management System Sharable... Moderate Unreviewed
CVE-2025-46102 was published Jul 17, 2025
A vulnerability, which was classified as critical, was found in code-projects Online Appointment... Moderate Unreviewed
CVE-2025-7750 was published Jul 17, 2025
OpenZeppelin Contracts Bytes's lastIndexOf function with position argument performs out-of-bound memory access on empty buffers Moderate
CVE-2025-54070 was published for @openzeppelin/contracts (npm) Jul 17, 2025
DiracX-Web is vulnerable to attack through an Open Redirect on its login page Moderate
CVE-2025-54066 was published for @dirac-grid/diracx-web-components (npm) Jul 17, 2025
Robin-Van-de-Merghel
Credited to Robin-Van-de-Merghel
A vulnerability classified as problematic was found in ZCMS 3.6.0. This vulnerability affects... Moderate Unreviewed
CVE-2025-7748 was published Jul 17, 2025
A vulnerability, which was classified as critical, has been found in code-projects Online... Moderate Unreviewed
CVE-2025-7749 was published Jul 17, 2025
An issue was discovered in AdGuard plugin before 1.11.22 for Safari on MacOS. AdGaurd verbosely... Moderate Unreviewed
CVE-2025-51497 was published Jul 17, 2025
Netwrix Directory Manager through 2025-05-01 allows XSS. Moderate Unreviewed
CVE-2025-47189 was published Jul 17, 2025
Bluebird devices contain a pre-loaded barcode scanner application. This application exposes an... Moderate Unreviewed
CVE-2025-5346 was published Jul 17, 2025
Bluebird devices contain a pre-loaded file manager application. This application exposes an... Moderate Unreviewed
CVE-2025-5345 was published Jul 17, 2025
Catalyst::Plugin::Session before version 0.44 for Perl generates session ids insecurely. The... Moderate Unreviewed
CVE-2025-40924 was published Jul 17, 2025
Grafana's insecure DingDing Alert integration exposes sensitive information Moderate
CVE-2025-3415 was published for github.com/grafana/grafana (Go) Jul 17, 2025
The Stop User Enumeration WordPress plugin before version 1.7.3 blocks REST API /wp-json/wp/v2... Moderate Unreviewed
CVE-2025-4302 was published Jul 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database