GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,802
Erlang
36
GitHub Actions
29
Go
2,386
Maven
5,000+
npm
4,016
NuGet
720
pip
3,811
Pub
12
RubyGems
930
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
10,728 advisories
Filter by severity
A vulnerability was found in Mercusys MW301R 1.0.2 Build 190726 Rel.59423n. It has been rated as...
Low
Unreviewed
CVE-2025-7882
was published
Jul 20, 2025
Thor before 1.4.0 can construct an unsafe shell command from library input.
Low
Unreviewed
CVE-2025-54314
was published
Jul 20, 2025
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the...
Low
Unreviewed
CVE-2025-32462
was published
Jun 30, 2025
Mattermost versions 10.5.x <= 10.5.7, 9.11.x <= 9.11.16 fail to negotiate a new token when...
Low
Unreviewed
CVE-2025-6227
was published
Jul 18, 2025
HCL Connections is vulnerable to an information disclosure vulnerability that could allow a user...
Low
Unreviewed
CVE-2024-42209
was published
Jul 17, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). ...
Low
Unreviewed
CVE-2025-50100
was published
Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ...
Low
Unreviewed
CVE-2025-50098
was published
Jul 15, 2025
Vulnerability in the Oracle GraalVM for JDK product of Oracle Java SE (component: Native Image). ...
Low
Unreviewed
CVE-2025-50065
was published
Jul 15, 2025
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK product of Oracle Java SE (component:...
Low
Unreviewed
CVE-2025-30752
was published
Jul 15, 2025
Vulnerability in the Oracle Database Materialized View component of Oracle Database Server. ...
Low
Unreviewed
CVE-2025-50066
was published
Jul 15, 2025
Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). ...
Low
Unreviewed
CVE-2025-50081
was published
Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported...
Low
Unreviewed
CVE-2025-50104
was published
Jul 15, 2025
Vulnerability in the Unified Audit component of Oracle Database Server. Supported versions that...
Low
Unreviewed
CVE-2025-30750
was published
Jul 15, 2025
Successful exploitation of the vulnerability could allow an attacker with administrator...
Low
Unreviewed
CVE-2025-52687
was published
Jul 16, 2025
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ...
Low
Unreviewed
CVE-2025-53029
was published
Jul 15, 2025
The improper default setting in JiranSoft CrossEditor4 on Windows, Linux, Unix (API modules)...
Low
Unreviewed
CVE-2025-7672
was published
Jul 15, 2025
A vulnerability was found in Teledyne FLIR FB-Series O and FLIR FH-Series ID 1.3.2.16. It has...
Low
Unreviewed
CVE-2025-7578
was published
Jul 14, 2025
A flaw was found in Ansible. Sensitive cookies without security flags over non-encrypted channels...
Low
Unreviewed
CVE-2025-53861
was published
Jul 11, 2025
A flaw was found in Ansible. Three API endpoints are accessible and return verbose,...
Low
Unreviewed
CVE-2025-53862
was published
Jul 11, 2025
When passing values outside of the expected range to QColorTransferGenericFunction it can cause a...
Low
Unreviewed
CVE-2025-5992
was published
Jul 11, 2025
Cross-site scripting in certain Zoom Clients before version 6.4.5 may allow an authenticated...
Low
Unreviewed
CVE-2025-49462
was published
Jul 10, 2025
Wing FTP Server before 7.4.4 does not properly validate and sanitize the url parameter of the...
Low
Unreviewed
CVE-2025-27889
was published
Jul 10, 2025
An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1...
Low
Unreviewed
CVE-2025-4972
was published
Jul 10, 2025
An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1...
Low
Unreviewed
CVE-2025-6168
was published
Jul 10, 2025
In Dradis before 4.11.0, the Output Console shows a job queue that may contain information about...
Low
Unreviewed
CVE-2023-50458
was published
Jul 10, 2025
ProTip!
Advisories are also available from the
GraphQL API