Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,360
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,793
NuGet
683
pip
3,471
Pub
12
RubyGems
894
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+

266,283 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-23840 was published Feb 17, 2025
The vulnerability existed in the password storage of Mobateks MobaXterm below 25.0. MobaXTerm... Moderate Unreviewed
CVE-2025-0714 was published Feb 17, 2025
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed
CVE-2025-26758 was published Feb 17, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-26754 was published Feb 17, 2025
Abacus ERP is versions older than 2024.210.16036, 2023.205.15833, 2022.105.15542 are affected by... Moderate Unreviewed
CVE-2025-0001 was published Feb 17, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-26778 was published Feb 17, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-26769 was published Feb 17, 2025
Missing Authorization vulnerability in Adnan Analytify allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-26773 was published Feb 17, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-23845 was published Feb 17, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-26770 was published Feb 17, 2025
In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer... Moderate Unreviewed
CVE-2024-56549 was published Dec 27, 2024
In the Linux kernel, the following vulnerability has been resolved: x86/mm/ident_map: Use... Moderate Unreviewed
CVE-2024-50017 was published Oct 21, 2024
A vulnerability was found in code-projects Real Estate Property Management System 1.0. It has... Moderate Unreviewed
CVE-2025-1381 was published Feb 17, 2025
A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical.... Moderate Unreviewed
CVE-2025-1380 was published Feb 17, 2025
A vulnerability has been found in code-projects Real Estate Property Management System 1.0 and... Moderate Unreviewed
CVE-2025-1379 was published Feb 17, 2025
`gh attestation verify` returns incorrect exit code during verification if no attestations are present Moderate
CVE-2025-25204 was published for github.com/cli/cli/v2 (Go) Feb 14, 2025
codysoyland phillmv
kommendorkapten jkylekelly
Orca HCM from LEARNING DIGITAL does not properly restrict access to a specific functionality,... Critical Unreviewed
CVE-2024-8584 was published Sep 9, 2024
The OWL Carousel Slider WordPress plugin through 2.2 does not sanitise and escape a parameter... Unknown Unreviewed
CVE-2024-13627 was published Feb 17, 2025
The Track Logins WordPress plugin through 1.0 does not sanitize and escape a parameter before... Unknown Unreviewed
CVE-2024-13608 was published Feb 17, 2025
The VR-Frases (collect & share quotes) WordPress plugin through 3.0.1 does not sanitise and... Unknown Unreviewed
CVE-2024-13626 was published Feb 17, 2025
A vulnerability, which was classified as problematic, was found in radare2 5.9.9 33286. Affected... Moderate Unreviewed
CVE-2025-1378 was published Feb 17, 2025
The Tube Video Ads Lite WordPress plugin through 1.5.7 does not sanitise and escape a parameter... Unknown Unreviewed
CVE-2024-13625 was published Feb 17, 2025
A vulnerability, which was classified as problematic, has been found in GNU elfutils 0.192. This... Moderate Unreviewed
CVE-2025-1377 was published Feb 17, 2025
Improper Validation of Integrity Check Value vulnerability in TXOne Networks StellarProtect ... Moderate Unreviewed
CVE-2024-47935 was published Feb 17, 2025
The Wise Forms WordPress plugin through 1.2.0 does not sanitise and escape some of its settings,... Unknown Unreviewed
CVE-2024-13603 was published Feb 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database