Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,781
Maven
5,000+
npm
4,386
NuGet
772
pip
4,164
Pub
12
RubyGems
965
Rust
1,073
Swift
45
Unreviewed advisories
All unreviewed
5,000+

116,476 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix overflow in... High Unreviewed
CVE-2025-22039 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: tracing: Fix use-after-free... High Unreviewed
CVE-2025-22035 was published Apr 16, 2025
A vulnerability was found in Tenda W12 3.0.0.5. It has been rated as critical. Affected by this... High Unreviewed
CVE-2025-3693 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: ntb_hw_switchtec: Fix shift... High Unreviewed
CVE-2023-53034 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix link state... High Unreviewed
CVE-2024-58093 was published Apr 16, 2025
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed
CVE-2025-39592 was published Apr 16, 2025
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed
CVE-2025-39584 was published Apr 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-39566 was published Apr 16, 2025
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed
CVE-2025-39570 was published Apr 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in dsky Site Search 360 allows Stored XSS. This... High Unreviewed
CVE-2025-39530 was published Apr 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi WP Tools allows Path Traversal.... High Unreviewed
CVE-2025-39544 was published Apr 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Toast Plugins Internal Link Optimiser allows... High Unreviewed
CVE-2025-39547 was published Apr 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in A WP Life Right Click Disable OR Ban allows... High Unreviewed
CVE-2025-39548 was published Apr 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-39518 was published Apr 16, 2025
Local File Inclusion vulnerability in Ready's attachment upload panel allows low privileged user... High Unreviewed
CVE-2025-1982 was published Apr 16, 2025
Missing Authorization vulnerability in NotFound FS Poster. This issue affects FS Poster: from n/a... High Unreviewed
CVE-2025-30960 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: memstick: rtsx_usb_ms: Fix... High Unreviewed
CVE-2025-22020 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Apply the link... High Unreviewed
CVE-2025-22022 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Don't skip on... High Unreviewed
CVE-2025-22023 was published Apr 16, 2025
Interface exposure vulnerability in the mobile application (com.transsion.carlcare) may lead to ... High Unreviewed
CVE-2025-3698 was published Apr 16, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-32923 was published Apr 16, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-30970 was published Apr 16, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-30984 was published Apr 16, 2025
Missing Authorization vulnerability in NotFound Unlimited Timeline allows Accessing Functionality... High Unreviewed
CVE-2025-27008 was published Apr 16, 2025
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed
CVE-2025-27011 was published Apr 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database