Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,802
Erlang
36
GitHub Actions
29
Go
2,382
Maven
5,000+
npm
4,015
NuGet
720
pip
3,811
Pub
12
RubyGems
930
Rust
987
Swift
38
Unreviewed advisories
All unreviewed
5,000+

109,532 advisories

Loading
The aapanel WP Toolkit plugin for WordPress is vulnerable to Privilege Escalation due to missing... High Unreviewed
CVE-2025-6813 was published Jul 18, 2025
The School Management System for Wordpress plugin for WordPress is vulnerable to Local File... High Unreviewed
CVE-2025-3740 was published Jul 18, 2025
The B1.lt plugin for WordPress is vulnerable to SQL Injection due to a missing capability check... High Unreviewed
CVE-2025-6718 was published Jul 18, 2025
Leviton AcquiSuite and Energy Monitoring Hub are susceptible to a cross-site scripting... High Unreviewed
CVE-2025-6185 was published Jul 18, 2025
A vulnerability, which was classified as critical, has been found in TOTOLINK T6 up to 4.1.5cu... High Unreviewed
CVE-2025-7758 was published Jul 18, 2025
A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07.26A1.... High Unreviewed
CVE-2025-7762 was published Jul 18, 2025
Brocade ASCG before 3.3.0 logs JSON Web Tokens (JWT) in log files. An attacker with access to... High Unreviewed
CVE-2025-6391 was published Jul 18, 2025
Brocade ASCG before 3.3.0 allows for the use of medium strength cryptography algorithms on... High Unreviewed
CVE-2025-7398 was published Jul 18, 2025
LangChain Community SSRF vulnerability exists in RequestsToolkit component High
CVE-2025-2828 was published for langchain-community (pip) Jun 23, 2025
Vulnerability in the Oracle Lease and Finance Management product of Oracle E-Business Suite ... High Unreviewed
CVE-2025-30743 was published Jul 15, 2025
A cross-site scripting (XSS) vulnerability was reported in the Lenovo Browser that could allow an... High Unreviewed
CVE-2025-6248 was published Jul 17, 2025
An improper validation vulnerability was reported in Lenovo Vantage that under certain conditions... High Unreviewed
CVE-2025-6232 was published Jul 17, 2025
A buffer overflow vulnerability was reported in the Lenovo Protection Driver, prior to version 5... High Unreviewed
CVE-2025-4657 was published Jul 17, 2025
NVIDIA Jetson Linux contains a vulnerability in UEFI Management mode, where an unprivileged local... High Unreviewed
CVE-2025-23270 was published Jul 17, 2025
A local privilege escalation vulnerability in Sophos Intercept X for Windows with Central Device... High Unreviewed
CVE-2025-7433 was published Jul 17, 2025
A code execution vulnerability has been identified in the Robot Operating System (ROS) 'rosbag'... High Unreviewed
CVE-2025-3753 was published Jul 17, 2025
An authentication bypass vulnerability was reported in FileZ client application that could allow... High Unreviewed
CVE-2025-6249 was published Jul 17, 2025
An improper validation vulnerability was reported in Lenovo Vantage that under certain conditions... High Unreviewed
CVE-2025-6231 was published Jul 17, 2025
A code injection vulnerability has been discovered in the Robot Operating System (ROS) 'rostopic'... High Unreviewed
CVE-2024-41921 was published Jul 17, 2025
A DLL hijacking vulnerability was reported in the Motorola Software Fix (Rescue and Smart... High Unreviewed
CVE-2025-1700 was published Jul 17, 2025
NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook,... High Unreviewed
CVE-2025-23267 was published Jul 17, 2025
A vulnerability related to registry permissions in the Intercept X for Windows updater prior to... High Unreviewed
CVE-2024-13972 was published Jul 17, 2025
An incorrect permissions vulnerability was reported in Elliptic Labs Virtual Lock Sensor that... High Unreviewed
CVE-2025-0886 was published Jul 17, 2025
A code injection vulnerability has been identified in the Robot Operating System (ROS) 'roslaunch... High Unreviewed
CVE-2024-39835 was published Jul 17, 2025
A code injection vulnerability has been discovered in the Robot Operating System (ROS) 'rostopic'... High Unreviewed
CVE-2024-41148 was published Jul 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database