GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 278,903

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

303,815 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A flaw was found in Undertow that can cause remote denial of service attacks. When the server... High Unreviewed

CVE-2024-3884 was published Dec 3, 2025

A malicious TLS1.2 server can force a TLS1.3 client with downgrade capability to use a... Moderate Unreviewed

CVE-2024-5814 was published Aug 27, 2024

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer... Moderate Unreviewed

CVE-2025-59820 was published Nov 26, 2025

A server-side request forgery (SSRF) vulnerability has been reported to affect QuLog Center. If... Moderate Unreviewed

CVE-2024-53696 was published Mar 7, 2025

A potential security vulnerability has been identified in HP Image Assistant for versions prior... Moderate Unreviewed

CVE-2025-13492 was published Dec 3, 2025

A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This... Moderate Unreviewed

CVE-2025-41080 was published Dec 4, 2025

An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local... Moderate Unreviewed

CVE-2025-64052 was published Dec 5, 2025

A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This... Moderate Unreviewed

CVE-2025-41079 was published Dec 4, 2025

ALLNET ALL-RUT22GW v3.3.8 was discovered to contain an OS command injection vulnerability via the... Moderate Unreviewed

CVE-2025-29269 was published Dec 4, 2025

Incorrect access control in the component ApiOrderService.java of platform v1.0.0 allows... High Unreviewed

CVE-2025-57212 was published Dec 4, 2025

Incorrect access control in the component orderService.queryObject of platform v1.0.0 allows... High Unreviewed

CVE-2025-57213 was published Dec 4, 2025

Incorrect access control in the component ApiPayController.java of platform v1.0.0 allows... High Unreviewed

CVE-2025-57210 was published Dec 4, 2025

A lack of Management Frame Protection in Waveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet... High Unreviewed

CVE-2025-63363 was published Dec 4, 2025

A security vulnerability has been detected in Rarlab RAR App up to 7.11 Build 127 on Android.... Low Unreviewed

CVE-2025-14111 was published Dec 6, 2025

A vulnerability exists in Google Apigee's JavaCallout policy https://docs.apigee.com/api... High Unreviewed

CVE-2025-13426 was published Dec 6, 2025

A weakness has been identified in ZSPACE Q2C NAS up to 1.1.0210050. Affected by this issue is the... High Unreviewed

CVE-2025-14108 was published Dec 6, 2025

Langflow versions up to and including 1.6.9 contain a chained vulnerability that enables account... Critical Unreviewed

CVE-2025-34291 was published Dec 6, 2025

A vulnerability was detected in xerrors Yuxi-Know up to 0.4.0. This vulnerability affects the... Moderate Unreviewed

CVE-2025-14116 was published Dec 6, 2025

A vulnerability was identified in ZSPACE Q2C NAS up to 1.1.0210050. Affected is the function... High Unreviewed

CVE-2025-14106 was published Dec 6, 2025

A security flaw has been discovered in ZSPACE Q2C NAS up to 1.1.0210050. Affected by this... High Unreviewed

CVE-2025-14107 was published Dec 6, 2025

An integer overflow or wraparound vulnerability has been reported to affect several QNAP... Moderate Unreviewed

CVE-2024-21905 was published Apr 26, 2024

A cross-site scripting (XSS) vulnerability has been reported to affect Network & Virtual Switch.... Moderate Unreviewed

CVE-2023-32969 was published Mar 8, 2024

ComposioHQ has a directory traversal vulnerability Moderate

CVE-2025-56427 was published for composio (pip) Dec 4, 2025

alexusmai laravel-file-manager is vulnerable to Directory Traversal via the unzip/extraction functionality High

CVE-2025-65346 was published for alexusmai/laravel-file-manager (Composer) Dec 4, 2025

Parcel has an Origin Validation Error vulnerability Moderate

CVE-2025-56648 was published for @parcel/reporter-dev-server (npm) Sep 17, 2025

Credited to R4356th and G-Rath

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

303,815 advisories