Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

145,439 advisories

Loading
A vulnerability was detected in campcodes Online Student Enrollment System 1.0. This affects an... Moderate Unreviewed
CVE-2025-14582 was published Dec 13, 2025
A vulnerability has been found in itsourcecode COVID Tracking System 1.0. Affected is an unknown... Moderate Unreviewed
CVE-2025-14584 was published Dec 13, 2025
A flaw has been found in campcodes Online Student Enrollment System 1.0. This impacts an unknown... Moderate Unreviewed
CVE-2025-14583 was published Dec 13, 2025
A vulnerability was found in itsourcecode COVID Tracking System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-14585 was published Dec 13, 2025
The CISA Software Acquisition Guide Supplier Response Web Tool before 2025-12-11 was vulnerable... Moderate Unreviewed
CVE-2025-67634 was published Dec 12, 2025
A security vulnerability has been detected in haxxorsid Stock-Management-System up to... Moderate Unreviewed
CVE-2025-14568 was published Dec 12, 2025
A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-14570 was published Dec 12, 2025
A vulnerability was detected in ggml-org whisper.cpp up to 1.8.2. Affected is the function... Moderate Unreviewed
CVE-2025-14569 was published Dec 12, 2025
An out-of-bounds write vulnerability exists in the Grassroots DICOM library (GDCM). The issue is... Moderate Unreviewed
CVE-2025-11266 was published Dec 12, 2025
A weakness has been identified in itsourcecode Student Management System 1.0. The affected... Moderate Unreviewed
CVE-2025-14578 was published Dec 12, 2025
A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Affected... Moderate Unreviewed
CVE-2025-14571 was published Dec 12, 2025
Vuetify has a Cross-site Scripting (XSS) vulnerability in the VDatePicker component Moderate
CVE-2025-8082 was published for vuetify (npm) Dec 12, 2025
Use after free in Password Manager in Google Chrome prior to 143.0.7499.110 allowed a remote... Moderate Unreviewed
CVE-2025-14372 was published Dec 12, 2025
A security vulnerability has been detected in Qualitor up to 8.24.73. The impacted element is an... Moderate Unreviewed
CVE-2025-14580 was published Dec 12, 2025
Inappropriate implementation in Toolbar in Google Chrome on Android prior to 143.0.7499.110... Moderate Unreviewed
CVE-2025-14373 was published Dec 12, 2025
jshERP v3.5 and earlier is affected by a stored Cross Site Scripting (XSS) vulnerability via the ... Moderate Unreviewed
CVE-2025-67344 was published Dec 12, 2025
Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference (IDOR) in the /core... Moderate Unreviewed
CVE-2025-64011 was published Dec 12, 2025
A vulnerability was identified in kidaze CourseSelectionSystem up to... Moderate Unreviewed
CVE-2025-14565 was published Dec 12, 2025
A security flaw has been discovered in kidaze CourseSelectionSystem up to... Moderate Unreviewed
CVE-2025-14566 was published Dec 12, 2025
A weakness has been identified in haxxorsid Stock-Management-System up to... Moderate Unreviewed
CVE-2025-14567 was published Dec 12, 2025
Code Injection using Electron Fuses in waveterm on MacOS allows TCC Bypass. This issue affects... Moderate Unreviewed
CVE-2025-12843 was published Dec 12, 2025
RuoYi versions 4.8.1 and earlier is affected by a stored XSS vulnerability in the /system/menu... Moderate Unreviewed
CVE-2025-67342 was published Dec 12, 2025
jshERP versions 3.5 and earlier are affected by a stored XSS vulnerability. This vulnerability... Moderate Unreviewed
CVE-2025-67341 was published Dec 12, 2025
Vite Plugin React has a Source Code Exposure Vulnerability in React Server Components Moderate
GHSA-c6m7-q6pr-c64r was published for @vitejs/plugin-rsc (npm) Dec 12, 2025
SolarEdge monitoring platform contains a Cross‑Site Scripting (XSS) flaw that allows an... Moderate Unreviewed
CVE-2025-36746 was published Dec 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database