Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,360
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,793
NuGet
683
pip
3,471
Pub
12
RubyGems
894
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

114,421 advisories

Loading
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2025-21401 was published Feb 15, 2025
If Brocade Fabric OS before Fabric OS 9.2.0 configuration settings are not set to encrypt SNMP... Moderate Unreviewed
CVE-2024-5462 was published Feb 15, 2025
Brocade SANnav before SANnav 2.3.1b enables weak TLS ciphers on ports 443 and 18082. In case of... Moderate Unreviewed
CVE-2024-10405 was published Feb 15, 2025
Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial... Moderate Unreviewed
CVE-2025-25988 was published Feb 14, 2025
Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain... Moderate Unreviewed
CVE-2025-25990 was published Feb 14, 2025
A SQL Injection vulnerability was found in /bpms/index.php in Source Code and Project Beauty... Moderate Unreviewed
CVE-2025-26157 was published Feb 14, 2025
SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2025-25993 was published Feb 14, 2025
SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2025-25991 was published Feb 14, 2025
SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2025-25994 was published Feb 14, 2025
A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the manage-employee.php page... Moderate Unreviewed
CVE-2025-26158 was published Feb 14, 2025
SQL Injection vulnerability in FeMiner wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2025-25992 was published Feb 14, 2025
An issue in the Arcadyan Livebox Fibra PRV3399B_B_LT allows a remote or local attacker to modify... Moderate Unreviewed
CVE-2024-57725 was published Feb 14, 2025
An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6. A possible type... Moderate Unreviewed
CVE-2024-37603 was published Feb 14, 2025
An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6 through 2021. A... Moderate Unreviewed
CVE-2024-37600 was published Feb 14, 2025
An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6. A possible heap... Moderate Unreviewed
CVE-2024-37601 was published Feb 14, 2025
LearnDash v6.7.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in... Moderate Unreviewed
CVE-2024-56938 was published Feb 13, 2025
LearnDash v6.7.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in... Moderate Unreviewed
CVE-2024-56939 was published Feb 13, 2025
Directory Traversal vulnerability in Ianproxy v.0.1 and before allows a remote attacker to obtain... Moderate Unreviewed
CVE-2024-57777 was published Feb 12, 2025
An issue in Orbe ONetView Roeador Onet-1200 Orbe 1680210096 allows a remote attacker to escalate... Moderate Unreviewed
CVE-2024-57778 was published Feb 14, 2025
Cross Site Scripting vulnerability found in KOHGYLW Kiftd v.1.0.18 allows a remote attacker to... Moderate Unreviewed
CVE-2020-19699 was published Apr 4, 2023
Dedecms 5.71sp1 and earlier is vulnerable to URL redirect. In the web application, a logic error... Moderate Unreviewed
CVE-2024-57241 was published Feb 12, 2025
The WP Bannerize WordPress plugin is vulnerable to authenticated SQL injection via the id... Moderate Unreviewed
CVE-2021-39351 was published May 24, 2022
An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. The... Moderate Unreviewed
CVE-2023-29137 was published Mar 31, 2023
An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. When a user with... Moderate Unreviewed
CVE-2023-29139 was published Mar 31, 2023
The Forminator Forms WordPress plugin before 1.38.3 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2024-7052 was published Feb 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database