Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,880
Maven
5,000+
npm
4,518
NuGet
784
pip
4,260
Pub
12
RubyGems
975
Rust
1,105
Swift
49
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

287,544 advisories

Loading
An issue was discovered in bridgetech VB288 Objective QoE Content Extractor, firmware version 5.6... High Unreviewed
CVE-2025-63208 was published Nov 19, 2025
The R.V.R Elettronica TEX product (firmware TEXL-000400, Web GUI TLAN-000400) is vulnerable to... Critical Unreviewed
CVE-2025-63207 was published Nov 19, 2025
The ELCA Star Transmitter Remote Control firmware 1.25 for STAR150, BP1000, STAR300, STAR2000,... High Unreviewed
CVE-2025-63209 was published Nov 19, 2025
The Newtec Celox UHD (models: CELOXA504, CELOXA820) running firmware version celox-21.6.13 is... Critical Unreviewed
CVE-2025-63210 was published Nov 19, 2025
An authentication bypass issue was discovered in Dasan Switch DS2924 web based interface,... Critical Unreviewed
CVE-2025-63206 was published Nov 19, 2025
An Insecure Direct Object Reference (IDOR) vulnerability in the Management Console of BlackBerry®... Moderate Unreviewed
CVE-2025-12766 was published Nov 19, 2025
The Looker endpoint for generating new projects from database connections allows users to specify... Moderate Unreviewed
CVE-2025-12743 was published Nov 19, 2025
A vulnerability was detected in Tenda CH22 1.0.0.1. Affected is the function formWrlExtraGet of... High Unreviewed
CVE-2025-13400 was published Nov 19, 2025
AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... High Unreviewed
CVE-2025-34332 was published Nov 19, 2025
AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... Critical Unreviewed
CVE-2025-34328 was published Nov 19, 2025
AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... High Unreviewed
CVE-2025-34331 was published Nov 19, 2025
AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... Critical Unreviewed
CVE-2025-34329 was published Nov 19, 2025
AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... Moderate Unreviewed
CVE-2025-34330 was published Nov 19, 2025
A security vulnerability has been detected in mrubyc up to 3.4. This impacts the function... Moderate Unreviewed
CVE-2025-13397 was published Nov 19, 2025
A weakness has been identified in code-projects Courier Management System 1.0. This affects an... Moderate Unreviewed
CVE-2025-13396 was published Nov 19, 2025
Improper Control of Generation of Code ('Code Injection') vulnerability in Progress DataDirect... High Unreviewed
CVE-2025-10702 was published Nov 19, 2025
Improper Control of Generation of Code ('Code Injection') vulnerability in Progress DataDirect... High Unreviewed
CVE-2025-10703 was published Nov 19, 2025
A reflected cross-site scripted (XSS) vulnerability in the /ecommerce/products.php component of E... Moderate Unreviewed
CVE-2025-63879 was published Nov 19, 2025
Github Restaurant Website Restoran v1.0 was discovered to contain a SQL injection vulnerability... Moderate Unreviewed
CVE-2025-63878 was published Nov 19, 2025
The Sound4 FIRST web-based management interface is vulnerable to Remote Code Execution (RCE) via... High Unreviewed
CVE-2025-63220 was published Nov 19, 2025
The Axel Technology StreamerMAX MK II devices (firmware versions 0.8.5 to 1.0.3) are vulnerable... Critical Unreviewed
CVE-2025-63223 was published Nov 19, 2025
The Itel DAB Encoder (IDEnc build 25aec8d) is vulnerable to Authentication Bypass due to improper... Critical Unreviewed
CVE-2025-63224 was published Nov 19, 2025
The Axel Technology puma devices (firmware versions 0.8.5 to 1.0.3) are vulnerable to Broken... Critical Unreviewed
CVE-2025-63221 was published Nov 19, 2025
Legacy Vivotek Device firmware uses default credetials for the root and user login accounts. Critical Unreviewed
CVE-2025-12592 was published Nov 19, 2025
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed
CVE-2025-11963 was published Nov 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database