Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,667
Maven
5,000+
npm
4,295
NuGet
760
pip
4,073
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

302,475 advisories

Loading
Improper access control in GitHub Copilot and Visual Studio Code allows an authorized attacker to... Moderate Unreviewed
CVE-2025-64660 was published Nov 21, 2025
Microsoft SharePoint Online Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2025-59245 was published Nov 21, 2025
IBM Concert 1.0.0 through 2.0.0 is vulnerable to cross-site scripting. This vulnerability allows... Moderate Unreviewed
CVE-2025-36153 was published Nov 21, 2025
IBM Concert 1.0.0 through 2.0.0 could allow a local user to forge log files to impersonate other... Moderate Unreviewed
CVE-2025-36159 was published Nov 21, 2025
Improper authorization in Dynamics OmniChannel SDK Storage Containers allows an unauthorized... High Unreviewed
CVE-2025-64655 was published Nov 21, 2025
Azure Bastion Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2025-49752 was published Nov 21, 2025
IBM webMethods Integration 10.11 through 10.11_Core_Fix22, 10.15 through 10.15_Core_Fix22, and 11... High Unreviewed
CVE-2025-36072 was published Nov 21, 2025
Microsoft Defender Portal Spoofing Vulnerability High Unreviewed
CVE-2025-62459 was published Nov 21, 2025
Azure Monitor Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-62207 was published Nov 21, 2025
IBM Concert 1.0.0 through 2.0.0 could disclose sensitive server information from HTTP response... Moderate Unreviewed
CVE-2025-36160 was published Nov 21, 2025
IBM Concert 1.0.0 through 2.0.0 could allow a local user with specific permission to obtain... Moderate Unreviewed
CVE-2025-36158 was published Nov 21, 2025
Qlik Sense Enterprise v14.212.13 was discovered to contain an information leak via the /dev-hub/... Unknown Unreviewed
CVE-2025-61138 was published Nov 21, 2025
A vulnerability was identified in Campcodes Complete Online Beauty Parlor Management System 1.0.... Moderate Unreviewed
CVE-2025-13484 was published Nov 21, 2025
A security flaw has been discovered in itsourcecode Online File Management System 1.0. This issue... Moderate Unreviewed
CVE-2025-13485 was published Nov 21, 2025
OpenFGA Improper Policy Enforcement Moderate
CVE-2025-64751 was published for github.com/openfga/openfga (Go) Nov 20, 2025
Minder does not sandbox http.send in Rego programs High
GHSA-6xvf-4vh9-mw47 was published for github.com/mindersec/minder (Go) Nov 20, 2025
Improper neutralisation of format characters in the settings of Revive Adserver 5.5.2 and 6.0.1... Low Unreviewed
CVE-2025-52666 was published Nov 20, 2025
Authorization bypass in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes an logged in... High Unreviewed
CVE-2025-48986 was published Nov 20, 2025
Improper Neutralization of Input in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes a... Moderate Unreviewed
CVE-2025-48987 was published Nov 20, 2025
Debug information disclosure in the SQL error message to in Revive Adserver 5.5.2 and 6.0.1 and... Moderate Unreviewed
CVE-2025-52671 was published Nov 20, 2025
FS Inc S3150-8T2F 8-Port Gigabit Ethernet L2+ Switch, 8 x Gigabit RJ45, with 2 x 1Gb SFP, Fanless... Moderate Unreviewed
CVE-2025-25613 was published Nov 20, 2025
Improper neutralisation of input in Revive Adserver 6.0.0+ causes a reflected XSS attack in the... Moderate Unreviewed
CVE-2025-55124 was published Nov 20, 2025
Improper neutralization of input in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes... Low Unreviewed
CVE-2025-55123 was published Nov 20, 2025
Insecure design policies in the user management system of Revive Adserver 5.5.2 and 6.0.1 and... Moderate Unreviewed
CVE-2025-52669 was published Nov 20, 2025
An issue was discovered in weijiang1994 university-bbs (aka Blogin) in commit... High Unreviewed
CVE-2025-63807 was published Nov 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database