GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,980
Composer 5,212
Erlang 40
GitHub Actions 40
Go 2,957
Maven 6,249
npm 4,607
NuGet 787
pip 4,306
Pub 12
RubyGems 984
Rust 1,121
Swift 49

Unreviewed advisories

All unreviewed 288,979

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,538 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue in Semantic machines v5.4.8 allows attackers to bypass authentication via sending a... High Unreviewed

CVE-2025-66698 was published Jan 13, 2026

Improper Authentication vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows... High Unreviewed

CVE-2025-69273 was published Jan 12, 2026

A flaw has been found in Flycatcher Toys smART Sketcher up to 2.0. This affects an unknown part... Moderate Unreviewed

CVE-2026-0842 was published Jan 11, 2026

KAYSUS KS-WR3600 routers with firmware 1.0.5.9.1 allow authentication bypass during session... Critical Unreviewed

CVE-2025-68717 was published Jan 8, 2026

When doing SSH-based transfers using either SCP or SFTP, and asked to do public key... Low Unreviewed

CVE-2025-15224 was published Jan 8, 2026

wolfSSH’s key exchange state machine can be manipulated to leak the client’s password in the... Critical Unreviewed

CVE-2025-14942 was published Jan 6, 2026

Blue Access Cobalt v02.000.195 suffers from an authentication bypass vulnerability, which allows... Critical Unreviewed

CVE-2025-60534 was published Jan 6, 2026

A malicious actor with access to the adjacent network could obtain unauthorized access to a UniFi... High Unreviewed

CVE-2026-21633 was published Jan 5, 2026

A vulnerability was found in code-projects Online Product Reservation System 1.0. Impacted is an... Moderate Unreviewed

CVE-2026-0589 was published Jan 5, 2026

A flaw has been found in bg5sbk MiniCMS up to 1.8. Impacted is the function delete_page of the... Moderate Unreviewed

CVE-2025-15455 was published Jan 5, 2026

A vulnerability was determined in bg5sbk MiniCMS up to 1.8. This affects an unknown function of... Moderate Unreviewed

CVE-2025-15458 was published Jan 5, 2026

A vulnerability was found in bg5sbk MiniCMS up to 1.8. The impacted element is an unknown... Moderate Unreviewed

CVE-2025-15457 was published Jan 5, 2026

A vulnerability has been found in bg5sbk MiniCMS up to 1.8. The affected element is an unknown... Moderate Unreviewed

CVE-2025-15456 was published Jan 5, 2026

An authentication bypass in the /cgi-bin/jvsweb.cgi endpoint of Revotech I6032W-FHW v1.0.0014 -... High Unreviewed

CVE-2025-67158 was published Jan 2, 2026

An issue was discovered in Zeroheight (SaaS) prior to 2025-06-13. A legacy user creation API... Moderate Unreviewed

CVE-2025-65925 was published Dec 30, 2025

An issue in Fossorial fosrl/pangolin v.1.6.2 and before allows a remote attacker to escalate... Critical Unreviewed

CVE-2025-56333 was published Dec 29, 2025

Improper Authentication vulnerability in Gmission Web Fax allows Privilege Escalation.This issue... High Unreviewed

CVE-2025-15069 was published Dec 29, 2025

A weakness has been identified in joey-zhou xiaozhi-esp32-server-java up to 3.0.0. This impacts... Moderate Unreviewed

CVE-2025-15135 was published Dec 28, 2025

A vulnerability was identified in simstudioai sim up to 0.5.27. This vulnerability affects... Moderate Unreviewed

CVE-2025-15099 was published Dec 26, 2025

A vulnerability was found in Alteryx Server. Affected by this issue is some unknown functionality... Moderate Unreviewed

CVE-2025-15097 was published Dec 26, 2025

Vulnerability in Tyche softwares Product Delivery Date for WooCommerce – Lite.This issue affects... Moderate Unreviewed

CVE-2023-52210 was published Dec 23, 2025

There is an improper authentication vulnerability in some Hikvision DVR products. Due to the... Moderate Unreviewed

CVE-2025-66174 was published Dec 19, 2025

A security flaw has been discovered in JeecgBoot up to 3.9.0. The affected element is an unknown... Moderate Unreviewed

CVE-2025-14908 was published Dec 19, 2025

An authentication bypass vulnerability in Google Cloud Dialogflow CX Messenger allowed... Moderate Unreviewed

CVE-2025-13427 was published Dec 19, 2025

Improper authentication vulnerability in TP-Link WA850RE (httpd modules) allows unauthenticated... Moderate Unreviewed

CVE-2025-14738 was published Dec 18, 2025

Previous 12…142 Next

Previous 1 2 3 4 5 … 141 142 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,538 advisories