Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,356
NuGet
765
pip
4,117
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

115,566 advisories

Loading
SyncBreeze 15.2.24 contains a denial of service vulnerability in the login authentication... High Unreviewed
CVE-2023-53873 was published Dec 15, 2025
Perch CMS 3.2 contains a remote code execution vulnerability that allows authenticated... High Unreviewed
CVE-2023-53889 was published Dec 15, 2025
GOM Player 2.3.90.5360 contains a remote code execution vulnerability in its Internet Explorer... High Unreviewed
CVE-2023-53875 was published Dec 15, 2025
Webedition CMS v2.9.8.8 contains a remote code execution vulnerability that allows authenticated... High Unreviewed
CVE-2023-53883 was published Dec 15, 2025
Blackcat CMS 1.4 contains a remote code execution vulnerability that allows authenticated... High Unreviewed
CVE-2023-53892 was published Dec 15, 2025
Webutler v3.2 contains a remote code execution vulnerability that allows authenticated... High Unreviewed
CVE-2023-53885 was published Dec 15, 2025
Zomplog 3.9 contains a remote code execution vulnerability that allows authenticated attackers to... High Unreviewed
CVE-2023-53888 was published Dec 15, 2025
Coppermine Gallery 1.6.25 contains a remote code execution vulnerability that allows... High Unreviewed
CVE-2023-53868 was published Dec 15, 2025
WEBIGniter 28.7.23 contains a file upload vulnerability that allows authenticated attackers to... High Unreviewed
CVE-2023-53869 was published Dec 15, 2025
misskey.js's export data contains private post data High
CVE-2025-66402 was published for misskey-js (npm) Dec 15, 2025
na2204 samunohito
Credited to na2204 and samunohito
EDB Hybrid Manager contains a flaw that allows an unauthenticated attacker to directly access... High Unreviewed
CVE-2025-14038 was published Dec 15, 2025
A flaw was found in runtimes-inventory-rhel8-operator. An internal proxy component is incorrectly... High Unreviewed
CVE-2025-11393 was published Dec 15, 2025
A security issue was found in the IPv6 stack in the Micro850 and Micro870 controllers when the... High Unreviewed
CVE-2025-13823 was published Dec 15, 2025
FNT Command 13.4.0 is vulnerable to Code Execution via the C Base Module. High Unreviewed
CVE-2024-44598 was published Dec 15, 2025
A security issue exists due to improper handling of malformed CIP packets during fuzzing. The... High Unreviewed
CVE-2025-13824 was published Dec 15, 2025
A Zip Slip vulnerability in the import a Project component of iceScrum v7.54 Pro On-prem allows... High Unreviewed
CVE-2025-60786 was published Dec 15, 2025
FNT Command 13.4.0 is vulnerable to Directory Traversal. High Unreviewed
CVE-2024-44599 was published Dec 15, 2025
NetSupport Manager < 14.12.0001 relies on a shared Gateway Key for authentication between... High Unreviewed
CVE-2025-34180 was published Dec 15, 2025
The Booking Calendar plugin for WordPress is vulnerable to time-based blind SQL Injection via the... High Unreviewed
CVE-2025-14383 was published Dec 15, 2025
NetSupport Manager < 14.12.0001 contains an arbitrary file write vulnerability in its... High Unreviewed
CVE-2025-34181 was published Dec 15, 2025
NetSupport Manager < 14.12.0001 contains an unauthenticated SQL injection vulnerability in its... High Unreviewed
CVE-2025-34179 was published Dec 15, 2025
A security vulnerability has been detected in Shiguangwu sgwbox N3 2.0.25. Affected by this issue... High Unreviewed
CVE-2025-14709 was published Dec 15, 2025
A weakness has been identified in Shiguangwu sgwbox N3 2.0.25. Affected by this vulnerability is... High Unreviewed
CVE-2025-14708 was published Dec 15, 2025
LINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS... High Unreviewed
CVE-2025-14022 was published Dec 15, 2025
A security flaw has been discovered in Shiguangwu sgwbox N3 2.0.25. Affected is an unknown... High Unreviewed
CVE-2025-14707 was published Dec 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database