Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,633
Erlang
34
GitHub Actions
25
Go
2,239
Maven
5,000+
npm
3,900
NuGet
701
pip
3,667
Pub
12
RubyGems
914
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

128,502 advisories

Loading
The Login Manager – Design Login Page, View Login Activity, Limit Login Attempts plugin for... Moderate Unreviewed
CVE-2025-2613 was published Apr 18, 2025
The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-13650 was published Apr 18, 2025
A missing authorization vulnerability was identified in GitHub Enterprise Server that allowed a... Moderate Unreviewed
CVE-2025-3124 was published Apr 18, 2025
A vulnerability, which was classified as critical, has been found in SourceCodester Web-based... Moderate Unreviewed
CVE-2025-3765 was published Apr 17, 2025
A vulnerability was found in PCMan FTP Server 2.0.7. It has been rated as critical. Affected by... Moderate Unreviewed
CVE-2025-3762 was published Apr 17, 2025
A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product... Moderate Unreviewed
CVE-2025-3764 was published Apr 17, 2025
A vulnerability classified as critical has been found in SourceCodester Phone Management System 1... Moderate Unreviewed
CVE-2025-3763 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: usb: usbip: fix a refcount... Moderate Unreviewed
CVE-2022-49389 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: block: Fix potential... Moderate Unreviewed
CVE-2022-49406 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: serial: 8250_aspeed_vuart:... Moderate Unreviewed
CVE-2022-49392 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: md: Don't set mddev private... Moderate Unreviewed
CVE-2022-49400 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: ext4: fix memory leak in... Moderate Unreviewed
CVE-2022-49408 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: lib/string_helpers: fix not... Moderate Unreviewed
CVE-2022-49403 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: RDMA/hfi1: Fix potential... Moderate Unreviewed
CVE-2022-49404 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: ext4: fix race condition... Moderate Unreviewed
CVE-2022-49414 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw... Moderate Unreviewed
CVE-2022-49386 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: watchdog: rzg2l_wdt: Fix... Moderate Unreviewed
CVE-2022-49387 was published Apr 17, 2025
In the Linux kernel, the following vulnerability has been resolved: soc: rockchip: Fix refcount... Moderate Unreviewed
CVE-2022-49382 was published Apr 17, 2025
Rasa Pro Missing Authentication For Voice Connector APIs Moderate
CVE-2025-32377 was published for rasa-pro (pip) Apr 17, 2025
An arbitrary file deletion vulnerability in the /post/{postTitle} component of flaskBlog v2.6.1... Moderate Unreviewed
CVE-2025-28101 was published Apr 17, 2025
A CSRF vulnerability in Commercify v1.0 allows remote attackers to perform unauthorized actions... Moderate Unreviewed
CVE-2025-29722 was published Apr 17, 2025
In JetBrains Toolbox App before 2.6 host key verification was missing in SSH plugin Moderate Unreviewed
CVE-2025-42921 was published Apr 17, 2025
In JetBrains Toolbox App before 2.6 the SSH plugin established connections without sufficient... Moderate Unreviewed
CVE-2025-43014 was published Apr 17, 2025
In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication... Moderate Unreviewed
CVE-2025-43013 was published Apr 17, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-39562 was published Apr 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database