Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,779
Erlang
36
GitHub Actions
29
Go
2,338
Maven
5,000+
npm
3,972
NuGet
714
pip
3,769
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

259,809 advisories

Loading
CloudClassroom-PHP-Project v.1.0 is vulnerable to SQL Injection in loginlinkadmin.php, allowing... Unknown Unreviewed
CVE-2025-26198 was published Jun 18, 2025
An issue in upf in open5gs 2.7.2 and earlier allows a remote attacker to cause a Denial of... High Unreviewed
CVE-2025-29646 was published Jun 18, 2025
A vulnerability in the PDF scanning processes of ClamAV could allow an unauthenticated, remote... Critical Unreviewed
CVE-2025-20260 was published Jun 18, 2025
A vulnerability in Universal Disk Format (UDF) processing of ClamAV could allow an... Moderate Unreviewed
CVE-2025-20234 was published Jun 18, 2025
IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0... Moderate Unreviewed
CVE-2025-1349 was published Jun 18, 2025
IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0... Moderate Unreviewed
CVE-2024-54183 was published Jun 18, 2025
IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0... Moderate Unreviewed
CVE-2024-54172 was published Jun 18, 2025
A missing length check in `ogs_pfcp_dev_add` function from PFCP library, used by both smf and upf... High Unreviewed
CVE-2025-44951 was published Jun 18, 2025
A missing length check in `ogs_pfcp_subnet_add` function from PFCP library, used by both smf and... Unknown Unreviewed
CVE-2025-44952 was published Jun 18, 2025
IBM webMethods Integration Server 10.5, 10.7, 10.11, and 10.15 could allow a privileged user to... High Unreviewed
CVE-2025-36048 was published Jun 18, 2025
IBM webMethods Integration Server 10.5, 10.7, 10.11, and 10.15 is vulnerable to an XML external... High Unreviewed
CVE-2025-36049 was published Jun 18, 2025
IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0... Moderate Unreviewed
CVE-2025-1348 was published Jun 18, 2025
A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series... High Unreviewed
CVE-2025-20271 was published Jun 18, 2025
Improper Input Validation vulnerability in Profisee on Windows (filesystem modules) allows Path... Moderate Unreviewed
CVE-2025-6240 was published Jun 18, 2025
SQL Injection vulnerability in pbootCMS v.3.2.5 and v.3.2.10 allows a remote attacker to obtain... High Unreviewed
CVE-2025-46109 was published Jun 18, 2025
An issue in EfroTech Time Trax v.1.0 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2025-46157 was published Jun 18, 2025
D-Link DPH-400S/SE VoIP Phone v1.01 contains hardcoded provisioning variables, including... Critical Unreviewed
CVE-2025-45784 was published Jun 18, 2025
Real Estate Management 1.0 is vulnerable to Cross Site Scripting (XSS) in /store/index.php. High Unreviewed
CVE-2025-45786 was published Jun 18, 2025
A cross-site scripting (XSS) vulnerability in miniTCG v1.3.1 beta allows attackers to execute... Moderate Unreviewed
CVE-2025-45661 was published Jun 18, 2025
In the Linux kernel, the following vulnerability has been resolved: LoongArch: cpuinfo: Fix a... Unknown Unreviewed
CVE-2022-50223 was published Jun 18, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/fb-helper: Fix out-of... Unknown Unreviewed
CVE-2022-50221 was published Jun 18, 2025
In the Linux kernel, the following vulnerability has been resolved: tty: vt: initialize unicode... Unknown Unreviewed
CVE-2022-50222 was published Jun 18, 2025
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Don't BUG if... Unknown Unreviewed
CVE-2022-50228 was published Jun 18, 2025
In the Linux kernel, the following vulnerability has been resolved: riscv:uprobe fix SR_SPIE set... Unknown Unreviewed
CVE-2022-50225 was published Jun 18, 2025
In the Linux kernel, the following vulnerability has been resolved: arm64: set UXN on swapper... Unknown Unreviewed
CVE-2022-50232 was published Jun 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database