GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,720
Composer 5,027
Erlang 39
GitHub Actions 38
Go 2,667
Maven 6,116
npm 4,295
NuGet 760
pip 4,073
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,755

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

924 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Allocation of Resources Without Limits or Throttling vulnerability in Shelly Pro 4PM (before v1.6... High Unreviewed

CVE-2025-11243 was published Nov 19, 2025

In Ascertia SigningHub through 8.6.8, there is a lack of rate limiting on the invite user... Moderate Unreviewed

CVE-2025-54320 was published Nov 18, 2025

EasyFlow GP developed by Digiwin has a Denial of service vulnerability, allowing unauthenticated... High Unreviewed

CVE-2025-13165 was published Nov 17, 2025

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through... Moderate Unreviewed

CVE-2025-59089 was published Nov 12, 2025

A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of... Moderate Unreviewed

CVE-2025-12748 was published Nov 11, 2025

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes... Moderate Unreviewed

CVE-2025-36008 was published Nov 7, 2025

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes... Moderate Unreviewed

CVE-2025-36136 was published Nov 7, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... Moderate Unreviewed

CVE-2025-53413 was published Nov 7, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... Moderate Unreviewed

CVE-2025-53410 was published Nov 7, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... Low Unreviewed

CVE-2025-53411 was published Nov 7, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... Moderate Unreviewed

CVE-2025-53409 was published Nov 7, 2025

An attacker that gains SSH access to an unprivileged account may be able to disrupt services ... Moderate Unreviewed

CVE-2025-59459 was published Oct 27, 2025

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.7 before 18.3.5, 18... Moderate Unreviewed

CVE-2025-11974 was published Oct 27, 2025

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.3.5,... High Unreviewed

CVE-2025-10497 was published Oct 27, 2025

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.0 before 18.3.5, 18... High Unreviewed

CVE-2025-11447 was published Oct 27, 2025

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services... Moderate Unreviewed

CVE-2025-53069 was published Oct 21, 2025

A lack of rate limiting in the component /Home/UploadStreamDocument of SigningHub v8.6.8 allows... High Unreviewed

CVE-2025-56223 was published Oct 20, 2025

rplay through 3.3.2 allows attackers to cause a denial of service (SIGSEGV and daemon crash) or... Moderate Unreviewed

CVE-2025-62672 was published Oct 19, 2025

Allocation of Resources Without Limits or Throttling vulnerability in The Wikimedia Foundation... Moderate Unreviewed

CVE-2025-62666 was published Oct 18, 2025

Allocation of Resources Without Limits or Throttling vulnerability in Azure Access Technology BLU... Critical Unreviewed

CVE-2025-11832 was published Oct 15, 2025

When the Allowed IP Addresses feature is configured on the F5OS-C partition control plane,... High Unreviewed

CVE-2025-59778 was published Oct 15, 2025

On BIG-IP Next CNF, BIG-IP Next SPK, and BIG-IP Next for Kubernetes systems, repeated undisclosed... High Unreviewed

CVE-2025-55670 was published Oct 15, 2025

When BIG-IP Advanced WAF is configured on a virtual server with Server-Side Request Forgery (SSRF... Moderate Unreviewed

CVE-2025-58474 was published Oct 15, 2025

When a BIG-IP APM Access Policy is configured on a virtual server, undisclosed traffic can cause... High Unreviewed

CVE-2025-53521 was published Oct 15, 2025

When an iRule containing the HTTP::respond command is configured on a virtual server, undisclosed... High Unreviewed

CVE-2025-46706 was published Oct 15, 2025

Previous1…37 Next

Previous 1 2 3 4 5 … 36 37 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

924 advisories