GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,487
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,614
Maven 6,093
npm 4,254
NuGet 760
pip 4,031
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,592

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

11,044 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

QLowEnergyController in Qt before 6.8.2 mishandles malformed Bluetooth ATT commands, leading to... Low Unreviewed

CVE-2025-23050 was published Oct 31, 2025

In danny-avila/librechat version 0.7.9, there is an insecure API design issue in the 2-Factor... Low Unreviewed

CVE-2025-8850 was published Oct 30, 2025

Credits Page not Matching Versions in Use in the FirmwareThis issue affects BLU-IC2: through 1.19... Low Unreviewed

CVE-2025-12517 was published Oct 30, 2025

The NS Maintenance Mode for WP WordPress plugin through 1.3.1 does not sanitise and escape some... Low Unreviewed

CVE-2025-10636 was published Oct 30, 2025

tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax... Low Unreviewed

CVE-2025-58183 was published Oct 30, 2025

LiteLLM Information health API_KEY Information Disclosure Vulnerability. This vulnerability... Low Unreviewed

CVE-2025-11203 was published Oct 29, 2025

Unexpected authentication form rendering in HTML Form Adapter using only non-default redirectless... Low Unreviewed

CVE-2025-26862 was published Oct 27, 2025

ZohoCorp ManageEngine Endpoint Central versions prior to 11.4.2528.05 are vulnerable to a... Low Unreviewed

CVE-2025-11248 was published Oct 27, 2025

GitLab has remediated an issue in GitLab EE affecting all versions from 17.6.0 before 18.3.5, 18... Low Unreviewed

CVE-2025-11989 was published Oct 27, 2025

GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.4.3, and... Low Unreviewed

CVE-2025-6601 was published Oct 27, 2025

Busybox 1.31.1 - Multiple Known Vulnerabilities.This issue affects BLU-IC2: through 1.19.5; BLU... Low Unreviewed

CVE-2025-12221 was published Oct 25, 2025

The Password Protected plugin for WordPress is vulnerable to authorization bypass via IP address... Low Unreviewed

CVE-2025-11244 was published Oct 25, 2025

The ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution plugin for... Low Unreviewed

CVE-2025-11888 was published Oct 25, 2025

The PixelYourSite WordPress plugin before 11.1.2 does not validate some URL parameters before... Low Unreviewed

CVE-2025-10723 was published Oct 24, 2025

An acceptance of extraneous untrusted data with trusted data vulnerability has been identified in... Low Unreviewed

CVE-2025-1680 was published Oct 23, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Low Unreviewed

CVE-2025-62659 was published Oct 22, 2025

A high privileged remote attacker can influence the parameters passed to the openssl command due... Low Unreviewed

CVE-2025-41721 was published Oct 22, 2025

Mercku M6a devices through 2.1.0 allow TELNET sessions via a router.telnet.enabled.update request... Low Unreviewed

CVE-2025-62773 was published Oct 22, 2025

On Mercku M6a devices through 2.1.0, session tokens remain valid for at least months in some cases. Low Unreviewed

CVE-2025-62772 was published Oct 22, 2025

On Mercku M6a devices through 2.1.0, the authentication system uses predictable session tokens... Low Unreviewed

CVE-2025-62774 was published Oct 22, 2025

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Block... Low Unreviewed

CVE-2025-62479 was published Oct 21, 2025

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component:... Low Unreviewed

CVE-2025-62480 was published Oct 21, 2025

Vulnerability in the Unified Audit component of Oracle Database Server. Supported versions that... Low Unreviewed

CVE-2025-61749 was published Oct 21, 2025

Vulnerability in the Oracle GraalVM for JDK product of Oracle Java SE (component: Compiler). ... Low Unreviewed

CVE-2025-61755 was published Oct 21, 2025

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition... Low Unreviewed

CVE-2025-61748 was published Oct 21, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,044 advisories