GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,794

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

114,421 advisories

Filter by severity

Sort by

Least recently updated

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed

CVE-2025-21401 was published Feb 15, 2025

If Brocade Fabric OS before Fabric OS 9.2.0 configuration settings are not set to encrypt SNMP... Moderate Unreviewed

CVE-2024-5462 was published Feb 15, 2025

Brocade SANnav before SANnav 2.3.1b enables weak TLS ciphers on ports 443 and 18082. In case of... Moderate Unreviewed

CVE-2024-10405 was published Feb 15, 2025

A SQL Injection vulnerability was found in /bpms/index.php in Source Code and Project Beauty... Moderate Unreviewed

CVE-2025-26157 was published Feb 14, 2025

A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the manage-employee.php page... Moderate Unreviewed

CVE-2025-26158 was published Feb 14, 2025

Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially... Moderate Unreviewed

CVE-2025-26507 was published Feb 14, 2025

SQL Injection vulnerability in FeMiner wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25992 was published Feb 14, 2025

Cross Site Scripting vulnerability in hooskcms v.1.8 allows a remote attacker to cause a denial... Moderate Unreviewed

CVE-2025-25988 was published Feb 14, 2025

Cross Site Scripting vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain... Moderate Unreviewed

CVE-2025-25990 was published Feb 14, 2025

SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25993 was published Feb 14, 2025

SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25991 was published Feb 14, 2025

SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25994 was published Feb 14, 2025

An issue in Orbe ONetView Roeador Onet-1200 Orbe 1680210096 allows a remote attacker to escalate... Moderate Unreviewed

CVE-2024-57778 was published Feb 14, 2025

An issue in the Arcadyan Livebox Fibra PRV3399B_B_LT allows a remote or local attacker to modify... Moderate Unreviewed

CVE-2024-57725 was published Feb 14, 2025

IBM QRadar SIEM 7.5 is vulnerable to cross-site scripting. This vulnerability allows a privileged... Moderate Unreviewed

CVE-2024-56463 was published Feb 14, 2025

IBM i 7.4 and 7.5 is vulnerable to a database access denial of service caused by a bypass of a... Moderate Unreviewed

CVE-2024-52895 was published Feb 14, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2025-1071 was published Feb 14, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed

CVE-2025-1239 was published Feb 14, 2025

Improper Input Validation vulnerability in WatchGuard Fireware OS allows an attacker to... Moderate Unreviewed

CVE-2025-0178 was published Feb 14, 2025

IBM Power Hardware Management Console V10.3.1050.0 could allow an authenticated user to traverse... Moderate Unreviewed

CVE-2024-56477 was published Feb 14, 2025

Missing Authorization vulnerability in ashamil OPSI Israel Domestic Shipments allows Exploiting... Moderate Unreviewed

CVE-2025-23766 was published Feb 14, 2025

Missing Authorization vulnerability in Murali Push Notification for Post and BuddyPress allows... Moderate Unreviewed

CVE-2025-23771 was published Feb 14, 2025

Insertion of Sensitive Information Into Sent Data vulnerability in brandtoss WP Mailster allows... Moderate Unreviewed

CVE-2025-24567 was published Feb 14, 2025

Missing Authorization vulnerability in Northern Beaches Websites IdeaPush allows Exploiting... Moderate Unreviewed

CVE-2025-24607 was published Feb 14, 2025

Missing Authorization vulnerability in Mark Winiarski WPLingo allows Exploiting Incorrectly... Moderate Unreviewed

CVE-2025-23534 was published Feb 14, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

114,421 advisories