Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+

574 advisories

Loading
A security vulnerability has been detected in macrozheng mall-swarm up to 1.0.3. Affected by this... Moderate Unreviewed
CVE-2025-13117 was published Nov 13, 2025
A vulnerability was detected in macrozheng mall-swarm up to 1.0.3. Affected by this issue is the... Moderate Unreviewed
CVE-2025-13118 was published Nov 13, 2025
A security flaw has been discovered in macrozheng mall-swarm up to 1.0.3. This impacts the... Moderate Unreviewed
CVE-2025-13115 was published Nov 13, 2025
A vulnerability has been found in Radarr 5.28.0.10274. The affected element is an unknown... High Unreviewed
CVE-2025-13130 was published Nov 14, 2025
A vulnerability was found in Sonarr 4.0.15.2940. The impacted element is an unknown function of... High Unreviewed
CVE-2025-13131 was published Nov 14, 2025
A vulnerability was detected in WeiYe-Jing datax-web up to 2.1.2. This impacts the function... Moderate Unreviewed
CVE-2025-13250 was published Nov 16, 2025
A vulnerability was detected in macrozheng mall up to 1.0.3. Affected by this issue is the... Moderate Unreviewed
CVE-2025-13443 was published Nov 20, 2025
Grafana Incorrect Privilege Assignment vulnerability Critical
CVE-2025-41115 was published for github.com/grafana/grafana (Go) Nov 21, 2025
cdupuis
Credited to cdupuis
Black Duck SCA versions prior to 2025.10.0 had user role permissions configured in an overly... Moderate Unreviewed
CVE-2025-0504 was published Nov 22, 2025
A vulnerability was detected in code-projects Blog Site 1.0. The affected element is an unknown... Moderate Unreviewed
CVE-2025-13576 was published Nov 24, 2025
OpenBao is Vulnerable to Privileged Operator Identity Group Root Escalation High
CVE-2025-64761 was published for github.com/openbao/openbao (Go) Nov 24, 2025
cipherboy
Credited to cipherboy
Insecure permissions in fail2ban-client v0.11.2 allows attackers with limited sudo privileges to... High Unreviewed
CVE-2025-45311 was published Nov 26, 2025
A flaw has been found in ZenTao up to 21.7.6-8564. The affected element is the function file:... Moderate Unreviewed
CVE-2025-13787 was published Nov 30, 2025
NutzBoot Incorrect Privilege Assignment vulnerability Moderate
CVE-2025-13806 was published for org.nutz:nutzboot-parent (Maven) Dec 1, 2025
A flaw has been found in orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1.... Moderate Unreviewed
CVE-2025-13808 was published Dec 1, 2025
A vulnerability was detected in orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1... Moderate Unreviewed
CVE-2025-13807 was published Dec 1, 2025
Grav vulnerable to Privilege Escalation in Grav Admin: Missing Username Uniqueness Check Allows Admin Account Takeover High
CVE-2025-66296 was published for getgrav/grav (Composer) Dec 2, 2025
NicatAliyevh
Credited to NicatAliyevh
The Aquarius HelperTool (1.0.003) privileged XPC service on macOS contains multiple flaws that... Moderate Unreviewed
CVE-2025-65842 was published Dec 3, 2025
A security vulnerability has been detected in macrozheng mall-swarm up to 1.0.3. Affected is the... Moderate Unreviewed
CVE-2025-14016 was published Dec 4, 2025
A vulnerability has been found in youlaitech youlai-mall 1.0.0/2.0.0. Affected by this... Moderate Unreviewed
CVE-2025-14052 was published Dec 5, 2025
A vulnerability was found in youlaitech youlai-mall 1.0.0/2.0.0. Affected is an unknown function... Moderate Unreviewed
CVE-2025-14086 was published Dec 5, 2025
A vulnerability was determined in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is an... Moderate Unreviewed
CVE-2025-14088 was published Dec 5, 2025
A vulnerability was identified in Himool ERP up to 2.2. Affected by this issue is the function... Moderate Unreviewed
CVE-2025-14089 was published Dec 5, 2025
A vulnerability was determined in SourceCodester Online Student Clearance System 1.0. The... Moderate Unreviewed
CVE-2025-14206 was published Dec 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database