GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,921
Composer 4,780
Erlang 36
GitHub Actions 29
Go 2,339
Maven 5,660
npm 3,973
NuGet 719
pip 3,769
Pub 12
RubyGems 923
Rust 976
Swift 38

Unreviewed advisories

All unreviewed 260,029

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

282,950 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Alkacon OpenCMS XSS via searchfilter or listSearchFilter parameter Low

CVE-2008-1510 was published for org.opencms:opencms-core (Maven) May 1, 2022

Alkacon OpenCMS Absolute Path Traversal via pathname in filePath.0 parameter Moderate

CVE-2008-1301 was published for org.opencms:opencms-core (Maven) May 1, 2022

Alkacon Open CMS XSS via Logfile Viewer Settings function Low

CVE-2008-1300 was published for org.opencms:opencms-core (Maven) May 1, 2022

Alkacon OpenCMS XSS via file tree navigation in system/workplace/views/explorer/tree_files.jsp Low

CVE-2008-1045 was published for org.opencms:opencms-core (Maven) May 1, 2022

Alkacon OpenCMS Improper Access Control via system/workplace/views/admin/admin-main.jsp Moderate

CVE-2006-3935 was published for org.opencms:opencms-core (Maven) May 1, 2022

A vulnerability was found in Tenda FH1202 1.2.0.14. It has been classified as critical. Affected... High Unreviewed

CVE-2025-5978 was published Jun 10, 2025

A missing length check in `ogs_pfcp_dev_add` function from PFCP library, used by both smf and upf... High Unreviewed

CVE-2025-44951 was published Jun 18, 2025

A vulnerability classified as critical was found in kiCode111 like-girl 5.2.0. This vulnerability... Moderate Unreviewed

CVE-2025-6005 was published Jun 12, 2025

An issue in upf in open5gs 2.7.2 and earlier allows a remote attacker to cause a Denial of... High Unreviewed

CVE-2025-29646 was published Jun 18, 2025

A vulnerability, which was classified as critical, has been found in kiCode111 like-girl 5.2.0.... Moderate Unreviewed

CVE-2025-6006 was published Jun 12, 2025

A missing length check in `ogs_pfcp_subnet_add` function from PFCP library, used by both smf and... High Unreviewed

CVE-2025-44952 was published Jun 18, 2025

ESI plugin does not have the limit for maximum inclusion depth, and that allows excessive memory... High Unreviewed

CVE-2025-49763 was published Jun 19, 2025

ACL configured in ip_allow.config or remap.config does not use IP addresses that are provided by... High Unreviewed

CVE-2025-31698 was published Jun 19, 2025

A vulnerability, which was classified as critical, has been found in TOTOLINK EX1200T 4.1.2cu... High Unreviewed

CVE-2025-6130 was published Jun 16, 2025

A flaw was found in Yelp. The Gnome user help application allows the help document to execute... Moderate Unreviewed

CVE-2025-3155 was published Apr 3, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-52822 was published Jun 20, 2025

A vulnerability was found in SourceCodester My Food Recipe 1.0 and classified as problematic.... Moderate Unreviewed

CVE-2025-6345 was published Jun 20, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Creative-Solutions Creative Contact Form... High Unreviewed

CVE-2025-52794 was published Jun 20, 2025

Cross-Site Request Forgery (CSRF) vulnerability in aharonyan WP Front User Submit / Front Editor... High Unreviewed

CVE-2025-52795 was published Jun 20, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Rameez Iqbal Real Estate Manager allows... High Unreviewed

CVE-2025-52825 was published Jun 20, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-52821 was published Jun 20, 2025

A vulnerability was found in SourceCodester Advance Charity Management System 1.0. It has been... Moderate Unreviewed

CVE-2025-6346 was published Jun 20, 2025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Moderate Unreviewed

CVE-2025-52719 was published Jun 20, 2025

Cross-Site Request Forgery (CSRF) vulnerability in hideoguchi Bluff Post allows Stored XSS. This... High Unreviewed

CVE-2025-52784 was published Jun 20, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-50043 was published Jun 20, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

282,950 advisories