Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,750 advisories

Loading
Strapi core vulnerable to sensitive data exposure via CORS misconfiguration Moderate
CVE-2025-53092 was published for @strapi/core (npm) Oct 16, 2025
ghostvirus62 derrickmehaffy
alexandrebodin innerdvations
Credited to ghostvirus62, derrickmehaffy, alexandrebodin, and innerdvations
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.7... Moderate Unreviewed
CVE-2025-43313 was published Oct 15, 2025
Improper access control in Microsoft Windows Search Component allows an authorized attacker to... Moderate Unreviewed
CVE-2025-59253 was published Oct 14, 2025
An incorrect OIDC authentication flow in Claroty Secure Access 3.3.0 through 4.0.2 can result in... Moderate Unreviewed
CVE-2025-54603 was published Oct 14, 2025
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller... Moderate Unreviewed
CVE-2025-37142 was published Oct 14, 2025
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller... Moderate Unreviewed
CVE-2025-37141 was published Oct 14, 2025
An arbitrary file download vulnerability exists in the web-based management interface of AOS-10... Moderate Unreviewed
CVE-2025-37143 was published Oct 14, 2025
Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller... Moderate Unreviewed
CVE-2025-37140 was published Oct 14, 2025
Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an... Moderate Unreviewed
CVE-2025-37135 was published Oct 14, 2025
Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an... Moderate Unreviewed
CVE-2025-37136 was published Oct 14, 2025
Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an... Moderate Unreviewed
CVE-2025-37137 was published Oct 14, 2025
Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to... Moderate Unreviewed
CVE-2025-0033 was published Oct 14, 2025
Links in a sandboxed iframe could open an external app on Android without the required "allow-"... Moderate Unreviewed
CVE-2025-11716 was published Oct 14, 2025
Ericsson Network Manager (ENM) versions prior to ENM 25.1 GA contain a vulnerability, if... Moderate Unreviewed
CVE-2025-27258 was published Oct 13, 2025
A flaw has been found in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11659 was published Oct 13, 2025
A vulnerability was detected in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11658 was published Oct 13, 2025
A vulnerability has been found in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11660 was published Oct 13, 2025
A security vulnerability has been detected in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11657 was published Oct 13, 2025
A weakness has been identified in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11656 was published Oct 13, 2025
A security flaw has been discovered in Total.js Flow up to... Moderate Unreviewed
CVE-2025-11655 was published Oct 13, 2025
A security vulnerability has been detected in code-projects Voting System 1.0. This affects an... Moderate Unreviewed
CVE-2025-11508 was published Oct 9, 2025
A security vulnerability has been detected in SourceCodester Hotel and Lodge Management System up... Moderate Unreviewed
CVE-2025-11470 was published Oct 8, 2025
A vulnerability was detected in JhumanJ OpnForm up to 1.9.3. Affected by this issue is some... Moderate Unreviewed
CVE-2025-11436 was published Oct 8, 2025
A security flaw has been discovered in projectworlds Advanced Library Management System 1.0.... Moderate Unreviewed
CVE-2025-11426 was published Oct 8, 2025
A weakness has been identified in Campcodes Advanced Online Voting Management System 1.0. This... Moderate Unreviewed
CVE-2025-11417 was published Oct 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database