Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,227
Maven
5,000+
npm
5,000+
NuGet
864
pip
4,502
Pub
12
RubyGems
995
Rust
1,187
Swift
51
Unreviewed advisories
All unreviewed
5,000+

120,973 advisories

Loading
A vulnerability was found in H3C M2 NAS V100R006. Affected by this vulnerability is an unknown... High Unreviewed
CVE-2025-8907 was published Aug 13, 2025
Apache Tomcat Improper Resource Shutdown or Release vulnerability High
CVE-2025-48989 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Aug 13, 2025
snieguu Credited to snieguu
Soosyze CMS's /user/login endpoint missing rate-limiting and lockout mechanisms High
CVE-2025-52392 was published for soosyze/soosyze (Composer) Aug 13, 2025
A memory corruption vulnerability exists in Foxit Reader 2025.1.0.27937 due to the use of an... High Unreviewed
CVE-2025-32451 was published Aug 13, 2025
This vulnerability exists in ZKTeco WL20 due to storage of admin and user credentials without... High Unreviewed
CVE-2025-54464 was published Aug 13, 2025
Organization Portal System developed by WellChoose has an Arbitrary File Reading vulnerability,... High Unreviewed
CVE-2025-8912 was published Aug 13, 2025
Organization Portal System developed by WellChoose has a SQL Injection vulnerability, allowing... High Unreviewed
CVE-2025-8914 was published Aug 13, 2025
Using Codex CLI in workspace-write mode inside a malicious context (repo, directory, etc) could... High Unreviewed
CVE-2025-55345 was published Aug 13, 2025
A vulnerability was found in INSTAR 2K+ and 4K 3.11.1 Build 1124. This issue affects some unknown... High Unreviewed
CVE-2025-8762 was published Aug 13, 2025
Organization Portal System developed by WellChoose has an Arbitrary File Reading vulnerability,... High Unreviewed
CVE-2025-8909 was published Aug 13, 2025
A vulnerability has been found in INSTAR 2K+ and 4K 3.11.1 Build 1124. This vulnerability affects... High Unreviewed
CVE-2025-8761 was published Aug 13, 2025
The Tutor LMS Pro – eLearning and online course solution plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-6184 was published Aug 13, 2025
Use after free in Aura in Google Chrome prior to 139.0.7258.127 allowed a remote attacker who... High Unreviewed
CVE-2025-8882 was published Aug 13, 2025
Out of bounds write in ANGLE in Google Chrome prior to 139.0.7258.127 allowed a remote attacker... High Unreviewed
CVE-2025-8901 was published Aug 13, 2025
Race in V8 in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to execute... High Unreviewed
CVE-2025-8880 was published Aug 13, 2025
Heap buffer overflow in libaom in Google Chrome prior to 139.0.7258.127 allowed a remote attacker... High Unreviewed
CVE-2025-8879 was published Aug 13, 2025
Tcg2Smm has a vulnerability which can be used to write arbitrary memory inside SMRAM and execute... High Unreviewed
CVE-2025-4277 was published Aug 13, 2025
UsbCoreDxe has a vulnerability which can be used to write arbitrary memory inside SMRAM and... High Unreviewed
CVE-2025-4276 was published Aug 13, 2025
A buffer overflow vulnerability exists in the module SetupUtility. An attacker with local... High Unreviewed
CVE-2025-4410 was published Aug 13, 2025
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free... High Unreviewed
CVE-2025-54231 was published Aug 13, 2025
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free... High Unreviewed
CVE-2025-54230 was published Aug 13, 2025
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free... High Unreviewed
CVE-2025-54232 was published Aug 13, 2025
Substance3D - Stager versions 3.1.3 and earlier are affected by an out-of-bounds write... High Unreviewed
CVE-2025-54222 was published Aug 13, 2025
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Use After Free... High Unreviewed
CVE-2025-54229 was published Aug 13, 2025
InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by a Use After Free vulnerability... High Unreviewed
CVE-2025-54224 was published Aug 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database