GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,638

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

104,956 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Summer Pearl Group Vacation Rental Management Platform prior to 1.0.2 is susceptible to a... High Unreviewed

CVE-2025-63561 was published Oct 31, 2025

When SmartStart Inclusion fails during the onboarding of a Z-Wave PIR sensor, the sensor will... High Unreviewed

CVE-2025-10693 was published Oct 31, 2025

ELOG allows an authenticated user to modify another user's profile. An attacker can edit a target... High Unreviewed

CVE-2025-64349 was published Oct 31, 2025

ELOG allows an authenticated user to upload arbitrary HTML files. The HTML content is executed in... High Unreviewed

CVE-2025-62618 was published Oct 31, 2025

Totolink LR350 v9.3.5u.6369_B20220309 was discovered to contain a stack overflow via the ssid... High Unreviewed

CVE-2025-63465 was published Oct 31, 2025

Totolink LR350 v9.3.5u.6369_B20220309 was discovered to contain a stack overflow via the ssid... High Unreviewed

CVE-2025-63464 was published Oct 31, 2025

The service Bizerba Communication Server (BCS) has an unquoted service path. Due to the way... High Unreviewed

CVE-2025-12507 was published Oct 31, 2025

By manipulating the Signal Level Attenuation Characterization (SLAC) protocol with spoofed... High Unreviewed

CVE-2025-12357 was published Oct 31, 2025

On a client with an admin user, a Global_Shipping script can be implemented. The script could... High Unreviewed

CVE-2025-12509 was published Oct 31, 2025

When using domain users as BRAIN2 users, communication with Active Directory services is... High Unreviewed

CVE-2025-12508 was published Oct 31, 2025

Totolink LR350 v9.3.5u.6369_B20220309 was discovered to contain a stack overflow via the ssid... High Unreviewed

CVE-2025-63469 was published Oct 31, 2025

Totolink LR350 v9.3.5u.6369_B20220309 was discovered to contain a stack overflow via the... High Unreviewed

CVE-2025-63468 was published Oct 31, 2025

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow a non-root user to gain... High Unreviewed

CVE-2025-33003 was published Oct 31, 2025

Integer overflow in GameMaker IDE below 2024.14.0 version can lead to can lead to application... High Unreviewed

CVE-2025-12501 was published Oct 31, 2025

The equipment grants a JWT token for each connection in the timeline, but during an active valid... High Unreviewed

CVE-2025-64386 was published Oct 31, 2025

The web server of the device performs exchanges of sensitive information in clear text through an... High Unreviewed

CVE-2025-64389 was published Oct 31, 2025

DLL Hijacking vulnerability in Trimble SketchUp desktop 2025 via crafted libcef.dll used by... High Unreviewed

CVE-2025-60749 was published Oct 31, 2025

Kitware VTK (Visualization Toolkit) through 9.5.0 contains a heap buffer overflow vulnerability... High Unreviewed

CVE-2025-57107 was published Oct 31, 2025

Kitware VTK (Visualization Toolkit) up to 9.5.0 is vulnerable to Buffer Overflow in... High Unreviewed

CVE-2025-57106 was published Oct 31, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-64366 was published Oct 31, 2025

Deserialization of Untrusted Data vulnerability in Chouby Polylang polylang allows Object... High Unreviewed

CVE-2025-64353 was published Oct 31, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-64360 was published Oct 31, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-64359 was published Oct 31, 2025

[This CNA information record relates to multiple CVEs; the text explains which aspects... High Unreviewed

CVE-2025-58147 was published Oct 31, 2025

[This CNA information record relates to multiple CVEs; the text explains which aspects... High Unreviewed

CVE-2025-58148 was published Oct 31, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

104,956 advisories