Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,845
Erlang
36
GitHub Actions
33
Go
2,465
Maven
5,000+
npm
4,088
NuGet
733
pip
3,907
Pub
12
RubyGems
943
Rust
1,011
Swift
39
Unreviewed advisories
All unreviewed
5,000+

26,715 advisories

Loading
Agiloft Release 28 downloads critical system packages over an insecure HTTP connection. An... Critical Unreviewed
CVE-2025-35115 was published Aug 27, 2025
Memory overflow vulnerability leading to Remote Code Execution and/or Denial of Service in... Critical Unreviewed
CVE-2025-7775 was published Aug 26, 2025
The JWT secret key is embedded in the egOS WebGUI backend and is readable to the default user. An... Critical Unreviewed
CVE-2025-41702 was published Aug 26, 2025
Insecure Permissions vulnerability in sparkshop v.1.1.7 allows a remote attacker to execute... Critical Unreviewed
CVE-2025-50722 was published Aug 26, 2025
An authentication bypass vulnerability exists which allows an unauthenticated attacker to control... Critical Unreviewed
CVE-2025-53118 was published Aug 26, 2025
A path traversal vulnerability in unauthenticated upload functionality allows a malicious actor... Critical Unreviewed
CVE-2025-53120 was published Aug 26, 2025
SQL Injection vulnerability in SMM Panel 3.1 allowing remote attackers to gain sensitive... Critical Unreviewed
CVE-2025-55575 was published Aug 26, 2025
An issue was discovered in getrebuild/rebuild 4.0.4. The affected source code class is com... Critical Unreviewed
CVE-2025-50900 was published Aug 26, 2025
phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in add-doctor.php via... Critical Unreviewed
CVE-2025-56212 was published Aug 26, 2025
phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in index.php via the... Critical Unreviewed
CVE-2025-56214 was published Aug 26, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54494 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54485 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54484 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54489 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54491 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54492 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54493 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54487 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54490 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54483 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54486 was published Aug 25, 2025
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The... Critical Unreviewed
CVE-2025-54488 was published Aug 25, 2025
Incorrect access control in the DELT_file.xgi endpoint of D-Link DSL-7740C with firmware DSL7740C... Critical Unreviewed
CVE-2025-29515 was published Aug 25, 2025
Incorrect access control in the config.xgi function of D-Link DSL-7740C with firmware DSL7740C.V6... Critical Unreviewed
CVE-2025-29514 was published Aug 25, 2025
An issue in System PDV v1.0 allows a remote attacker to obtain sensitive information via the hash... Critical Unreviewed
CVE-2025-45968 was published Aug 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database