GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
749 advisories
PowerShell Elevation of Privilege Vulnerability
High
CVE-2022-26788
was published
for
Microsoft.PowerShell.SDK
(NuGet)
Apr 16, 2022
ImageMagick has a Format String Bug in InterpretImageFilename leads to arbitrary code execution
High
CVE-2025-55298
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 26, 2025
Withdrawn Advisory: Bootstrap Cross-Site Scripting (XSS) vulnerability
Moderate
CVE-2024-6531
was published
for
bootstrap
(RubyGems)
Jul 11, 2024
•
withdrawn
Akka.Remote TLS did not properly implement certificate-based authentication
Critical
CVE-2025-61778
was published
for
Akka.Cluster
(NuGet)
Oct 7, 2025
DNN vulnerable to Reflected Cross-Site Scripting (XSS) using url to profile
Moderate
CVE-2025-59821
was published
for
DotNetNuke.Core
(NuGet)
Sep 23, 2025
DNN Vulnerable to Stored XSS Using Backend Admin Credentials
Low
CVE-2025-59546
was published
for
DotNetNuke.Core
(NuGet)
Sep 23, 2025
DNN Vulnerable to Stored Cross-Site Scripting (XSS) in the Prompt module
Critical
CVE-2025-59545
was published
for
DotNetNuke.Core
(NuGet)
Sep 23, 2025
DNN affected by Stored Cross-Site Scripting (XSS) in Profile Biography field
Moderate
CVE-2025-59539
was published
for
DotNetNuke.Core
(NuGet)
Sep 22, 2025
DNN allows loading unused themes on anonymous clients through query parameters
Moderate
CVE-2025-59535
was published
for
DotNetNuke.Core
(NuGet)
Sep 22, 2025
Umbraco Forms's Short and Long Answer Fields Are Not Validated Server-Side For Maximum Length
Moderate
CVE-2025-23041
was published
for
Umbraco.Forms
(NuGet)
Jan 14, 2025
DNN.PLATFORM Allows Reflected Cross-Site Scripting (XSS) in some TokenReplace situations with SkinObjects
Moderate
CVE-2025-52486
was published
for
DNN.PLATFORM
(NuGet)
Jun 20, 2025
DNN.PLATFORM Allows Stored Cross-Site Scripting (XSS) in Activity Feed
Moderate
CVE-2025-52485
was published
for
DNN.PLATFORM
(NuGet)
Jun 20, 2025
Withdrawn Advisory: Bootstrap Cross-Site Scripting (XSS) vulnerability
Moderate
CVE-2024-6484
was published
for
bootstrap
(RubyGems)
Jul 11, 2024
•
withdrawn
ImageMagick has a Stack Buffer Overflow in image.c
High
CVE-2025-53101
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 25, 2025
ImageMagick BlobStream Forward-Seek Under-Allocation
Low
CVE-2025-57807
was published
for
Magick.NET-Q16-HDRI-OpenMP-arm64
(NuGet)
Sep 5, 2025
ProTip!
Advisories are also available from the
GraphQL API