GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,876
Erlang
37
GitHub Actions
37
Go
2,526
Maven
5,000+
npm
4,189
NuGet
742
pip
3,968
Pub
12
RubyGems
947
Rust
1,030
Swift
39
Unreviewed advisories
All unreviewed
5,000+
9,833 advisories
Filter by severity
A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this...
Moderate
Unreviewed
CVE-2025-11079
was published
Sep 27, 2025
Mercusys MW305R 3.30 and below is has a Transport Layer Security (TLS) certificate private key...
Moderate
Unreviewed
CVE-2025-56463
was published
Sep 26, 2025
A security flaw has been discovered in givanz Vvveb up to 1.0.7.2. This affects an unknown part...
Moderate
Unreviewed
CVE-2025-11028
was published
Sep 26, 2025
OpenMLS improper persistence of the secret tree during message processing
Moderate
GHSA-qr9h-x63w-vqfm
was published
for
openmls
(Rust)
Sep 26, 2025
A vulnerability was determined in givanz Vvveb up to 1.0.7.2. Affected by this vulnerability is...
Moderate
Unreviewed
CVE-2025-11026
was published
Sep 26, 2025
Rancher sends sensitive information to external services through the `/meta/proxy` endpoint
Moderate
CVE-2025-54468
was published
for
github.com/rancher/rancher
(Go)
Sep 26, 2025
ml-logger file handler allows reading arbitrary files
Moderate
CVE-2025-10952
was published
for
ml-logger
(pip)
Sep 25, 2025
Dell PowerScale OneFS, versions 9.5.0.0 through 9.11.0.0, contains an exposure of sensitive...
Moderate
Unreviewed
CVE-2025-36601
was published
Sep 25, 2025
The Blackmagic Web Presenter HD firmware version 3.3 exposes sensitive information via an...
Critical
Unreviewed
CVE-2025-57437
was published
Sep 22, 2025
The Blackmagic ATEM Mini Pro 2.7 exposes sensitive device and stream configuration information...
Critical
Unreviewed
CVE-2025-57441
was published
Sep 22, 2025
Creacast Creabox Manager 4.4.4 exposes sensitive configuration data via a publicly accessible...
High
Unreviewed
CVE-2025-57430
was published
Sep 22, 2025
The 2wcom IP-4c 2.15.5 device's web interface includes an information disclosure vulnerability....
Moderate
Unreviewed
CVE-2025-57433
was published
Sep 22, 2025
An issue in user interface in Kyocera Command Center RX EXOSYS M5521cdn allows remote to obtain...
High
Unreviewed
CVE-2023-49367
was published
Sep 18, 2025
Ericsson Catalog Manager and Ericsson Order Care APIs do not have authentication enabled by...
Moderate
Unreviewed
CVE-2024-25011
was published
Sep 18, 2025
A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Impacted is an...
Moderate
Unreviewed
CVE-2025-10607
was published
Sep 17, 2025
This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird...
High
Unreviewed
CVE-2025-10536
was published
Sep 16, 2025
There is an unauthorized access vulnerability in ZTE T5400. Due to improper permission control of...
Moderate
Unreviewed
CVE-2025-26711
was published
Sep 16, 2025
There is an an information disclosure vulnerability in ZTE T5400. Due to improper configuration...
Low
Unreviewed
CVE-2025-26710
was published
Sep 16, 2025
The The Events Calendar plugin for WordPress is vulnerable to Information Exposure in all...
Moderate
Unreviewed
CVE-2025-9808
was published
Sep 16, 2025
The issue was addressed with improved handling of caches. This issue is fixed in tvOS 26, Safari...
Moderate
Unreviewed
CVE-2025-43356
was published
Sep 16, 2025
The issue was addressed with improved checks. This issue is fixed in iOS 18.7 and iPadOS 18.7,...
Critical
Unreviewed
CVE-2025-43362
was published
Sep 16, 2025
A privacy issue was addressed by moving sensitive data. This issue is fixed in macOS Sonoma 14.8,...
Moderate
Unreviewed
CVE-2025-43367
was published
Sep 16, 2025
A flaw has been found in Wavlink WL-WN578W2 221110. Impacted is an unknown function of the file ...
Moderate
Unreviewed
CVE-2025-10321
was published
Sep 12, 2025
An issue was discovered in AXIS BANK LIMITED Axis Mobile App 9.9 allowing attackers to gain...
Moderate
Unreviewed
CVE-2025-56467
was published
Sep 12, 2025
ProTip!
Advisories are also available from the
GraphQL API