Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,488
Maven
5,000+
npm
4,104
NuGet
735
pip
3,923
Pub
12
RubyGems
945
Rust
1,017
Swift
39
Unreviewed advisories
All unreviewed
5,000+

136,791 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-48103 was published Sep 5, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-48102 was published Sep 5, 2025
Missing Authorization vulnerability in VillaTheme HAPPY allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-53571 was published Sep 5, 2025
In multiple locations, there is a possible way to persistently DoS the device due to a missing... Moderate Unreviewed
CVE-2025-26432 was published Sep 5, 2025
In CredentialManagerServiceStub of CredentialManagerService.java, there is a possible way to... Moderate Unreviewed
CVE-2025-26437 was published Sep 5, 2025
In add_attr of sdp_discovery.cc, there is a possible out of bounds read due to a missing bounds... Moderate Unreviewed
CVE-2025-26441 was published Sep 5, 2025
In onCreate of NotificationAccessConfirmationActivity.java, there is a possible incorrect... Moderate Unreviewed
CVE-2025-26442 was published Sep 5, 2025
In multiple locations, there is a possible permanent denial of service due to resource exhaustion... Moderate Unreviewed
CVE-2025-26449 was published Sep 5, 2025
In offerNetwork of ConnectivityService.java, there is a possible leak of sensitive data due to a... Moderate Unreviewed
CVE-2025-26445 was published Sep 5, 2025
In writeToParcel of CursorWindow.cpp, there is a possible out of bounds read due to uninitialized... Moderate Unreviewed
CVE-2025-26448 was published Sep 5, 2025
In isContentUriForOtherUser of BluetoothOppSendFileInfo.java, there is a possible cross user data... Moderate Unreviewed
CVE-2025-26453 was published Sep 5, 2025
In allowPackageAccess of multiple files, resource exhaustion is possible when repeatedly adding... Moderate Unreviewed
CVE-2025-26463 was published Sep 5, 2025
In multiple functions of DexUseManagerLocal.java, there is a possible way to crash system server... Moderate Unreviewed
CVE-2025-26456 was published Sep 5, 2025
NVIDIA HGX and DGX contain a vulnerability where a misconfiguration of the LS10 could enable an... Moderate Unreviewed
CVE-2025-23302 was published Sep 5, 2025
NVIDIA HGX and DGX contain a vulnerability where a misconfiguration of the VBIOS could enable an... Moderate Unreviewed
CVE-2025-23301 was published Sep 5, 2025
NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver (PMD), where an attacker on a... Moderate Unreviewed
CVE-2025-23259 was published Sep 5, 2025
NVIDIA ConnectX contains a vulnerability in the management interface, where an attacker with... Moderate Unreviewed
CVE-2025-23262 was published Sep 5, 2025
NVIDIA Cumulus Linux and NVOS products contain a vulnerability, where hashed user passwords are... Moderate Unreviewed
CVE-2025-23261 was published Sep 5, 2025
A security flaw has been discovered in projectworlds Travel Management System 1.0. The impacted... Moderate Unreviewed
CVE-2025-9928 was published Sep 5, 2025
Improper access control in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to... Moderate Unreviewed
CVE-2025-21031 was published Sep 5, 2025
Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1... Moderate Unreviewed
CVE-2023-21473 was published Sep 5, 2025
Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1... Moderate Unreviewed
CVE-2023-21472 was published Sep 5, 2025
A vulnerability was identified in projectworlds Travel Management System 1.0. The affected... Moderate Unreviewed
CVE-2025-9927 was published Sep 5, 2025
ModStartCMS v9.5.0 has an arbitrary file write vulnerability, which allows attackers to write... Moderate Unreviewed
CVE-2025-55824 was published Sep 5, 2025
A vulnerability was determined in itsourcecode Sports Management System 1.0. This affects an... Moderate Unreviewed
CVE-2025-9767 was published Sep 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database