GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,407
Composer 4,950
Erlang 39
GitHub Actions 38
Go 2,605
Maven 6,057
npm 4,250
NuGet 757
pip 4,016
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,227

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

275,227 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM Concert Software 1.0.0 through 2.0.0 could allow a local user to obtain sensitive... Moderate Unreviewed

CVE-2025-36083 was published Oct 28, 2025

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... Unknown Unreviewed

CVE-2025-61107 was published Oct 28, 2025

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... Unknown Unreviewed

CVE-2025-61103 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34318 was published Oct 28, 2025

IBM Concert Software 1.0.0 through 2.0.0 could allow a user to modify system logs due to... Moderate Unreviewed

CVE-2025-36081 was published Oct 28, 2025

An out-of-bounds read vulnerability has been discovered in Monkey's Audio 11.31, specifically in... Unknown Unreviewed

CVE-2025-61043 was published Oct 28, 2025

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... Unknown Unreviewed

CVE-2025-61106 was published Oct 28, 2025

Stack-based buffer overflow vulnerability in WAVLINK QUANTUM D3G/WL-WN530HG3 firmware... Unknown Unreviewed

CVE-2025-61128 was published Oct 28, 2025

IBM Concert 1.0.0 through 2.0.0 Software is vulnerable to server-side request forgery (SSRF).... Moderate Unreviewed

CVE-2025-36085 was published Oct 28, 2025

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... Unknown Unreviewed

CVE-2025-61104 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34314 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34316 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a command injection vulnerability that... High Unreviewed

CVE-2025-34312 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34315 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34313 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34317 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34309 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a command injection vulnerability that... High Unreviewed

CVE-2025-34311 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34307 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34308 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34306 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34310 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain multiple stored cross-site scripting (XSS... Moderate Unreviewed

CVE-2025-34305 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34303 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a stored cross-site scripting (XSS)... Moderate Unreviewed

CVE-2025-34301 was published Oct 28, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

275,227 advisories