Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,850
Erlang
36
GitHub Actions
34
Go
2,473
Maven
5,000+
npm
4,091
NuGet
734
pip
3,907
Pub
12
RubyGems
944
Rust
1,011
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

267,481 advisories

Loading
Uncaught exception issue exists in Multiple products in bizhub series. If a malformed file is... Moderate Unreviewed
CVE-2025-54777 was published Aug 29, 2025
Improper neutralization of input during web page generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-13987 was published Aug 29, 2025
The Events Addon for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-8150 was published Aug 29, 2025
The OSM Map Widget for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2025-8619 was published Aug 29, 2025
The List Subpages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-8290 was published Aug 29, 2025
Multiple products provided by iND Co.,Ltd contain an OS command injection vulnerability. If... High Unreviewed
CVE-2025-53508 was published Aug 29, 2025
The LWSCache plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed
CVE-2025-8147 was published Aug 29, 2025
The iATS Online Forms plugin for WordPress is vulnerable to time-based SQL Injection via the ... Moderate Unreviewed
CVE-2025-9441 was published Aug 29, 2025
The Ultimate Tag Warrior Importer plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2025-9374 was published Aug 29, 2025
Clinic Image System developed by Changing contains hard-coded Credentials, allowing... Critical Unreviewed
CVE-2025-8857 was published Aug 29, 2025
A vulnerability was found in Portabilis i-Educar up to 2.10. This vulnerability affects unknown... Moderate Unreviewed
CVE-2025-9609 was published Aug 29, 2025
Multiple products provided by iND Co.,Ltd contain an insecure storage of sensitive information... High Unreviewed
CVE-2025-53507 was published Aug 29, 2025
The QbiCRMGateway developed by Ai3 has an Arbitrary File Reading vulnerability, allowing... High Unreviewed
CVE-2025-9639 was published Aug 29, 2025
A vulnerability was determined in code-projects Online Event Judging System 1.0. This issue... Moderate Unreviewed
CVE-2025-9610 was published Aug 29, 2025
Clinic Image System developed by Changing has a SQL Injection vulnerability, allowing... High Unreviewed
CVE-2025-8858 was published Aug 29, 2025
TSA developed by Changing has a Missing Authentication vulnerability, allowing unauthenticated... Critical Unreviewed
CVE-2025-8861 was published Aug 29, 2025
A security flaw has been discovered in E4 Sistemas Mercatus ERP 2.00.019. The affected element is... Moderate Unreviewed
CVE-2025-9619 was published Aug 29, 2025
A vulnerability was determined in Telesquare TLR-2005KSH 1.2.4. The affected element is an... Moderate Unreviewed
CVE-2025-9603 was published Aug 29, 2025
A vulnerability was detected in itsourcecode Apartment Management System 1.0. This affects an... Moderate Unreviewed
CVE-2025-9601 was published Aug 29, 2025
A flaw has been found in Portabilis i-Educar up to 2.10. Affected by this issue is some unknown... Moderate Unreviewed
CVE-2025-9607 was published Aug 29, 2025
There is an Unquoted Service Path Vulnerability in some HikCentral FocSign versions. This could... Moderate Unreviewed
CVE-2025-39246 was published Aug 29, 2025
Rejected reason: Not used Unknown Unreviewed
CVE-2025-58328 was published Aug 29, 2025
A vulnerability has been found in Portabilis i-Educar up to 2.10. This affects an unknown part of... Moderate Unreviewed
CVE-2025-9608 was published Aug 29, 2025
Rejected reason: Not used Unknown Unreviewed
CVE-2025-58333 was published Aug 29, 2025
There is an Access Control Vulnerability in some HikCentral Professional versions. This could... High Unreviewed
CVE-2025-39247 was published Aug 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database