GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,874
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
741
pip
3,961
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
270,933 advisories
Filter by severity
A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3...
Moderate
Unreviewed
CVE-2025-43779
was published
Sep 24, 2025
A Insufficient Session Expiration vulnerability in the Liferay Portal 7.4.3.121 through 7.3.3.131...
Moderate
Unreviewed
CVE-2025-43819
was published
Sep 24, 2025
Cleartext storage of sensitive information was discovered in Click Programming Software version...
Moderate
Unreviewed
CVE-2025-54855
was published
Sep 24, 2025
Improper input validation in Satellite Management Controller (SMC) may allow an attacker with...
Moderate
Unreviewed
CVE-2024-21935
was published
Sep 24, 2025
A predictable seed in pseudo-random number generator vulnerability has been discovered in...
High
Unreviewed
CVE-2025-55069
was published
Sep 24, 2025
The use of a broken or risky cryptographic algorithm was discovered in firmware version 3.60 of...
High
Unreviewed
CVE-2025-59484
was published
Sep 24, 2025
The use of a hard-coded cryptographic key was discovered in firmware version 3.60 of the Click...
Moderate
Unreviewed
CVE-2025-58069
was published
Sep 24, 2025
An improper resource shutdown or release vulnerability has been identified in the Click Plus C2...
High
Unreviewed
CVE-2025-57882
was published
Sep 24, 2025
An authorization bypass vulnerability has been discovered in the Click Plus C2-03CPU2 device...
High
Unreviewed
CVE-2025-55038
was published
Sep 24, 2025
Improper input validation in Satellite Management Controller (SMC) may allow an attacker with...
Moderate
Unreviewed
CVE-2024-21927
was published
Sep 24, 2025
An improper resource shutdown or release vulnerability has been identified in the Click Plus C2...
High
Unreviewed
CVE-2025-58473
was published
Sep 24, 2025
In the Linux kernel, the following vulnerability has been resolved:
btrfs: fix qgroup reserve...
Moderate
Unreviewed
CVE-2022-49075
was published
Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved:
mm/mempolicy: fix mpol_new...
Moderate
Unreviewed
CVE-2022-49080
was published
Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved:
iommu/omap: Fix regression...
Moderate
Unreviewed
CVE-2022-49083
was published
Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved:
ASoC: soc-compress: prevent...
Moderate
Unreviewed
CVE-2021-47650
was published
Sep 23, 2025
Buffer overflow vulnerability in Tenda AC9 1.0 via the user supplied sys.vendor configuration value.
Unknown
Unreviewed
CVE-2025-57638
was published
Sep 23, 2025
Indian Bank IndSMART Android App 3.8.1 is vulnerable to Missing SSL Certificate Validation in...
Unknown
Unreviewed
CVE-2025-56146
was published
Sep 23, 2025
ProTip!
Advisories are also available from the
GraphQL API