Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5,371 advisories

Loading
Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache... Unknown Unreviewed
CVE-2025-64405 was published Nov 12, 2025
Apache OpenOffice documents can contain links to other files. A missing Authorization... Unknown Unreviewed
CVE-2025-64404 was published Nov 12, 2025
Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache... Moderate Unreviewed
CVE-2025-64402 was published Nov 12, 2025
Apache OpenOffice documents can contain links. A missing Authorization vulnerability in Apache... High Unreviewed
CVE-2025-64401 was published Nov 12, 2025
Apache OpenOffice Calc spreadsheet can contain links to other files, in the form of "external... High Unreviewed
CVE-2025-64403 was published Nov 12, 2025
The Booking Calendar | Appointment Booking | Bookit plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-12633 was published Nov 12, 2025
The Alt Text Generator AI – Auto Generate & Bulk Update Alt Texts For Images plugin for WordPress... Moderate Unreviewed
CVE-2025-12113 was published Nov 12, 2025
Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose... High Unreviewed
CVE-2025-30398 was published Nov 11, 2025
NVIDIA AIStore contains a vulnerability in AuthN where an unauthenticated user may cause... Moderate Unreviewed
CVE-2025-33185 was published Nov 11, 2025
The Classified Listing – AI-Powered Classified ads & Business Directory Plugin plugin for... Moderate Unreviewed
CVE-2025-12953 was published Nov 11, 2025
An improper access restriction to a folder in Bitdefender Endpoint Security Tools for Mac (BEST)... Moderate Unreviewed
CVE-2025-5317 was published Nov 11, 2025
The Ninja Countdown | Fastest Countdown Builder plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-12665 was published Nov 11, 2025
The Private Google Calendars plugin for WordPress is vulnerable to unauthorized modification of... Moderate Unreviewed
CVE-2025-12526 was published Nov 11, 2025
The Shelf Planner plugin for WordPress is vulnerable to unauthorized modification of data due to... Moderate Unreviewed
CVE-2025-11894 was published Nov 11, 2025
The Find Unused Images plugin for WordPress is vulnerable to unauthorized loss of data due to a... Moderate Unreviewed
CVE-2025-11996 was published Nov 11, 2025
The Add Multiple Marker plugin for WordPress is vulnerable to unauthorized modification of data... Moderate Unreviewed
CVE-2025-11999 was published Nov 11, 2025
The Crypto plugin for WordPress is vulnerable to unauthorized manipulation of data in all... Moderate Unreviewed
CVE-2025-11988 was published Nov 11, 2025
Due to a missing authorization check in SAP NetWeaver Application Server for ABAP, an... Moderate Unreviewed
CVE-2025-42882 was published Nov 11, 2025
SAP S4CORE (Manage journal entries) does not perform necessary authorization checks for an... Moderate Unreviewed
CVE-2025-42899 was published Nov 11, 2025
In JetBrains YouTrack before 2025.3.104432 insecure Junie configuration could lead to data... Moderate Unreviewed
CVE-2025-64690 was published Nov 10, 2025
In JetBrains YouTrack before 2025.3.104432 improper access control allowed modify MCP tool logic Moderate Unreviewed
CVE-2025-64687 was published Nov 10, 2025
In JetBrains YouTrack before 2025.3.104432 information disclosure was possible via the feedback form Moderate Unreviewed
CVE-2025-64684 was published Nov 10, 2025
In JetBrains Hub before 2025.3.104992 a race condition allowed bypass of the user limit via... Low Unreviewed
CVE-2025-64681 was published Nov 10, 2025
A security flaw has been discovered in rymcu forest up to... Moderate Unreviewed
CVE-2025-12925 was published Nov 10, 2025
A vulnerability was identified in rymcu forest up to de53ce79db9faa2efc4e79ce1077a302c42a1224.... Moderate Unreviewed
CVE-2025-12924 was published Nov 10, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database