Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,767
Maven
5,000+
npm
4,374
NuGet
770
pip
4,148
Pub
12
RubyGems
963
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12,919 advisories

Loading
ADB(Android Debug Bridge) is affected by type privilege bypass, successful exploitation of this... Low Unreviewed
CVE-2025-57840 was published Dec 24, 2025
Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-14408 was published Dec 24, 2025
Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-14410 was published Dec 24, 2025
Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-14411 was published Dec 24, 2025
pdfforge PDF Architect PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability.... Low Unreviewed
CVE-2025-14421 was published Dec 24, 2025
Soda PDF Desktop PDF File Parsing Memory Corruption Information Disclosure Vulnerability. This... Low Unreviewed
CVE-2025-14407 was published Dec 24, 2025
Piranha has stored cross-site scripting (XSS) vulnerability Low
CVE-2025-67291 was published for Piranha (NuGet) Dec 22, 2025
Piranha has stored cross-site scripting (XSS) vulnerability Low
CVE-2025-67290 was published for Piranha (NuGet) Dec 22, 2025
Under certain circumstances, attacker can capture the network key, read or write encrypted... Low Unreviewed
CVE-2025-61738 was published Dec 22, 2025
The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to... Low Unreviewed
CVE-2025-12654 was published Dec 21, 2025
Tuta Mail has DOM attribute and CSS injection in its Contact Viewer feature Low
GHSA-24v3-254g-jv85 was published for @tutao/tutanota-utils (npm) Dec 19, 2025
Orejime has executable code in HTML attributes Low
CVE-2025-68457 was published for orejime (npm) Dec 19, 2025
Rudloff felixgirault
Credited to Rudloff and felixgirault
A flaw has been found in Open5GS up to 2.7.5. This impacts the function... Low Unreviewed
CVE-2025-14953 was published Dec 19, 2025
pretix has Broken Access Control Allowing Cross-User File Access via UUID Low
CVE-2025-14881 was published for pretix (pip) Dec 19, 2025
pretix has Broken Access Control Allowing Cross-User File Access via UUID Low
CVE-2025-14882 was published for pretix (pip) Dec 19, 2025
Microsoft Edge (Chromium-based) Spoofing Vulnerability Low Unreviewed
CVE-2025-65046 was published Dec 19, 2025
A Stored HTML Injection vulnerability was discovered in the Time Machine Snapshot Diff... Low Unreviewed
CVE-2025-40891 was published Dec 18, 2025
SSH private keys of the "Remote alert handlers (Linux)" rule were exposed in the rule page's HTML... Low Unreviewed
CVE-2025-65000 was published Dec 18, 2025
Freedombox before 25.17.1 does not set proper permissions for the backups-data directory,... Low Unreviewed
CVE-2025-68462 was published Dec 18, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in watchOS 26... Low Unreviewed
CVE-2025-46279 was published Dec 17, 2025
A logging issue was addressed with improved data redaction. This issue is fixed in macOS Tahoe 26... Low Unreviewed
CVE-2025-46277 was published Dec 17, 2025
Improper management of Path-relative stylesheet import in HCL BigFix Remote Control Lite Web... Low Unreviewed
CVE-2025-55254 was published Dec 17, 2025
Multiple memory corruption issues were addressed with improved input validation. This issue is... Low Unreviewed
CVE-2025-43533 was published Dec 17, 2025
A race condition was addressed with improved state handling. This issue is fixed in watchOS 26.2,... Low Unreviewed
CVE-2025-43531 was published Dec 17, 2025
Mattermost Desktop App versions <6.0.0 fail to enable the Hardened Runtime on the Mattermost... Low Unreviewed
CVE-2025-13326 was published Dec 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database