GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,904
Erlang
38
GitHub Actions
38
Go
2,566
Maven
5,000+
npm
4,237
NuGet
753
pip
4,001
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
11,007 advisories
Filter by severity
IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an...
Low
Unreviewed
CVE-2025-2139
was published
Oct 12, 2025
HCL Unica Platform is impacted by misconfigured security related HTTP headers. This can lead to...
Low
Unreviewed
CVE-2025-52615
was published
Oct 12, 2025
HCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerability. A malicious...
Low
Unreviewed
CVE-2025-52614
was published
Oct 12, 2025
HCL Unica Centralized Offer Management is vulnerable to poor unhandled exceptions which exposes...
Low
Unreviewed
CVE-2025-31998
was published
Oct 12, 2025
HCL Unica Centralized Offer Management is vulnerable to a potential Server-Side Request Forgery ...
Low
Unreviewed
CVE-2025-31993
was published
Oct 12, 2025
The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to Cross-Site Request...
Low
Unreviewed
CVE-2025-8606
was published
Oct 11, 2025
Denial of service (DoS) vulnerability in the office service. Successful exploitation of this...
Low
Unreviewed
CVE-2025-58291
was published
Oct 11, 2025
Denial of service (DoS) vulnerability in the office service. Successful exploitation of this...
Low
Unreviewed
CVE-2025-58290
was published
Oct 11, 2025
Denial of service (DoS) vulnerability in the office service. Successful exploitation of this...
Low
Unreviewed
CVE-2025-58286
was published
Oct 11, 2025
Denial of service (DoS) vulnerability in the office service. Successful exploitation of this...
Low
Unreviewed
CVE-2025-58292
was published
Oct 11, 2025
Permission control vulnerability in the camera module. Successful exploitation of this...
Low
Unreviewed
CVE-2025-58282
was published
Oct 11, 2025
A vulnerability
Cacheable SSL Page Found vulnerability has been identified
in HCL AION.
...
Low
Unreviewed
CVE-2025-52625
was published
Oct 10, 2025
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HCL AION This issue...
Low
Unreviewed
CVE-2025-52634
was published
Oct 10, 2025
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HCL AION.This issue...
Low
Unreviewed
CVE-2025-52630
was published
Oct 10, 2025
A
rusted types in scripts not enforced in CSP vulnerability has been identified
in HCL AION...
Low
Unreviewed
CVE-2025-52635
was published
Oct 10, 2025
Inclusion of Functionality from Untrusted Control Sphere vulnerability in HCL MyXalytics. v6.6...
Low
Unreviewed
CVE-2025-52655
was published
Oct 10, 2025
Improper access control in WindowManager in Samsung DeX prior to SMR Oct-2025 Release 1 allows...
Low
Unreviewed
CVE-2025-21046
was published
Oct 10, 2025
Potential use of sensitive information in GET requests in Checkmk GmbH's Checkmk versions <2.4...
Low
Unreviewed
CVE-2025-32916
was published
Oct 9, 2025
In Gemini iOS, when a user shared a snippet of a conversation, it would share the entire...
Low
Unreviewed
CVE-2025-5009
was published
Oct 8, 2025
A security vulnerability has been detected in wonderwhy-er DesktopCommanderMCP up to 0.2.13. This...
Low
Unreviewed
CVE-2025-11489
was published
Oct 8, 2025
In Ankitects Anki before 25.02.6, crafted sound file references could cause files to be written...
Low
Unreviewed
CVE-2025-62187
was published
Oct 7, 2025
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release...
Low
Unreviewed
CVE-2025-43910
was published
Oct 7, 2025
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release...
Low
Unreviewed
CVE-2025-43909
was published
Oct 7, 2025
Generation of Predictable Numbers or Identifiers vulnerability in B&R Industrial Automation...
Low
Unreviewed
CVE-2025-3449
was published
Oct 7, 2025
ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to...
Low
Unreviewed
CVE-2025-61985
was published
Oct 6, 2025
ProTip!
Advisories are also available from the
GraphQL API