Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,796
Maven
5,000+
npm
4,410
NuGet
772
pip
4,181
Pub
12
RubyGems
965
Rust
1,078
Swift
45
Unreviewed advisories
All unreviewed
5,000+

310,008 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: iomap: allocate... Unknown Unreviewed
CVE-2025-68357 was published Dec 24, 2025
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: add... Unknown Unreviewed
CVE-2025-68206 was published Dec 16, 2025
In the Linux kernel, the following vulnerability has been resolved: net: use dst_dev_rcu() in... Unknown Unreviewed
CVE-2025-40170 was published Nov 12, 2025
Improper Authentication vulnerability in the mobile monitoring feature of ICONICS GENESIS64... Moderate Unreviewed
CVE-2024-1573 was published Jul 4, 2024
In the Linux kernel, the following vulnerability has been resolved: hsr: hold rcu and dev lock... Moderate Unreviewed
CVE-2025-39872 was published Sep 23, 2025
Buffer Over-read vulnerability in Mitsubishi Electric MC Works64 versions 4.00A (10.95.201.23) to... Moderate Unreviewed
CVE-2022-23130 was published Jan 22, 2022
In the Linux kernel, the following vulnerability has been resolved: sched/rt: Fix race in... Moderate Unreviewed
CVE-2025-38234 was published Jul 4, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Unknown Unreviewed
CVE-2025-67928 was published Jan 8, 2026
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Unknown Unreviewed
CVE-2025-67920 was published Jan 8, 2026
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in... Unknown Unreviewed
CVE-2026-0675 was published Jan 8, 2026
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Unknown Unreviewed
CVE-2025-67935 was published Jan 8, 2026
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Unknown Unreviewed
CVE-2025-68873 was published Jan 8, 2026
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Unknown Unreviewed
CVE-2025-68867 was published Jan 8, 2026
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in... Unknown Unreviewed
CVE-2025-69169 was published Jan 8, 2026
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Unknown Unreviewed
CVE-2025-68887 was published Jan 8, 2026
Missing Authorization vulnerability in Campaign Monitor Campaign Monitor for WordPress forms-for... Unknown Unreviewed
CVE-2026-0674 was published Jan 8, 2026
When doing TLS related transfers with reused easy or multi handles and altering the ... Unknown Unreviewed
CVE-2025-14819 was published Jan 8, 2026
When doing multi-threaded LDAPS transfers (LDAP over TLS) with libcurl, changing TLS options in... Unknown Unreviewed
CVE-2025-14017 was published Jan 8, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Unknown Unreviewed
CVE-2025-22728 was published Jan 8, 2026
Server-Side Request Forgery (SSRF) vulnerability in _nK nK Themes Helper nk-themes-helper allows... Unknown Unreviewed
CVE-2025-22726 was published Jan 8, 2026
Authentication Bypass Using an Alternate Path or Channel vulnerability in RiceTheme Felan... Unknown Unreviewed
CVE-2025-23504 was published Jan 8, 2026
Authorization Bypass Through User-Controlled Key vulnerability in WofficeIO Woffice Core woffice... Unknown Unreviewed
CVE-2025-67919 was published Jan 8, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Unknown Unreviewed
CVE-2025-67921 was published Jan 8, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Unknown Unreviewed
CVE-2025-22713 was published Jan 8, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Unknown Unreviewed
CVE-2025-23993 was published Jan 8, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database