GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,235
Composer 4,895
Erlang 38
GitHub Actions 38
Go 2,558
Maven 6,031
npm 4,232
NuGet 751
pip 4,001
Pub 12
RubyGems 953
Rust 1,042
Swift 45

Unreviewed advisories

All unreviewed 273,736

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,929 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The issue was addressed with improved authentication. This issue is fixed in macOS Sequoia 15.6.... High Unreviewed

CVE-2025-43281 was published Oct 15, 2025

The Keyy Two Factor Authentication (like Clef) plugin for WordPress is vulnerable to privilege... High Unreviewed

CVE-2025-10293 was published Oct 15, 2025

Improper authentication in Windows SMB Client allows an unauthorized attacker to perform... Low Unreviewed

CVE-2025-59280 was published Oct 14, 2025

Improper authentication in Windows Remote Desktop Protocol allows an authorized attacker to... High Unreviewed

CVE-2025-55340 was published Oct 14, 2025

An improper authentication vulnerability [CWE-287] in Fortinet FortiAnalyzer version 7.6.0... Moderate Unreviewed

CVE-2025-53845 was published Oct 14, 2025

A path traversal security issue exists within FactoryTalk View Machine Edition, allowing... High Unreviewed

CVE-2025-9064 was published Oct 14, 2025

An authentication bypass security issue exists within FactoryTalk View Machine Edition Web... High Unreviewed

CVE-2025-9063 was published Oct 14, 2025

A broken authorization vulnerability in Kiloview NDI N30 allows a remote unauthenticated attacker... Critical Unreviewed

CVE-2025-9265 was published Oct 13, 2025

A vulnerability was found in ProjectsAndPrograms School Management System up to... Moderate Unreviewed

CVE-2025-11661 was published Oct 13, 2025

A vulnerability was identified in Tomofun Furbo 360 and Furbo Mini. Affected by this issue is... Moderate Unreviewed

CVE-2025-11633 was published Oct 12, 2025

A security flaw has been discovered in ChurchCRM up to 5.18.0. This impacts the function... Moderate Unreviewed

CVE-2025-11529 was published Oct 9, 2025

A vulnerability in Extreme Networks’ Fabric Engine (VOSS) before 9.3 was discovered. When SD-WAN... High Unreviewed

CVE-2025-11192 was published Oct 7, 2025

MCPHub has an Improper Authorization vulnerability via its handleSseConnection function Moderate

CVE-2025-11287 was published for @samanhappy/mcphub (npm) Oct 5, 2025

An improper authentication vulnerability has been reported to affect QNAP Authenticator. If an... Moderate Unreviewed

CVE-2025-54154 was published Oct 3, 2025

Incorrect authentication vulnerability in OpenSIAC, which could allow an attacker to impersonate... Critical Unreviewed

CVE-2025-41064 was published Oct 2, 2025

Trivision NC-227WF firmware 5.80 (build 20141010) login mechanism reveals whether a username... Moderate Unreviewed

CVE-2025-56764 was published Sep 29, 2025

A vulnerability in the Ruijie RG-ES series switch firmware ESW_1.0(1)B1P39 enables remote... Critical Unreviewed

CVE-2025-56752 was published Sep 29, 2025

A weakness has been identified in iHongRen pptp-vpn 1.0/1.0.1 on macOS. This issue affects the... High Unreviewed

CVE-2025-11130 was published Sep 29, 2025

A vulnerability in the implementation of the TACACS+ protocol in Cisco IOS Software and Cisco IOS... High Unreviewed

CVE-2025-20160 was published Sep 24, 2025

A flaw has been found in Magnetism Studios Endurance up to 3.3.0 on macOS. This affects the... High Unreviewed

CVE-2025-10906 was published Sep 24, 2025

An authentication bypass vulnerability exists in multiple WSO2 products when FIDO authentication... Low Unreviewed

CVE-2025-0672 was published Sep 23, 2025

A cross-tenant authentication vulnerability exists in multiple WSO2 products due to improper... Moderate Unreviewed

CVE-2025-0663 was published Sep 23, 2025

Improper authentication vulnerability in Novakon P series allows unauthenticated attackers to... Critical Unreviewed

CVE-2025-9965 was published Sep 23, 2025

Creacast Creabox Manager contains a critical authentication flaw that allows an attacker to... High Unreviewed

CVE-2025-57434 was published Sep 22, 2025

A vulnerability was identified in huggingface LeRobot up to 0.3.3. Affected by this vulnerability... Moderate Unreviewed

CVE-2025-10772 was published Sep 22, 2025

Previous1…158 Next

Previous 1 2 3 4 5 … 157 158 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,929 advisories