Thanks to visit codestin.com
Credit goes to github.com

Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,800
Maven
5,000+
npm
4,426
NuGet
773
pip
4,199
Pub
12
RubyGems
968
Rust
1,086
Swift
47
Unreviewed advisories
All unreviewed
5,000+

310,265 advisories

Loading
The WooCommerce Square plugin for WordPress is vulnerable to Insecure Direct Object Reference in... High Unreviewed
CVE-2025-13457 was published Jan 10, 2026
In Area9 Rhapsode 1.47.3, an authenticated attacker can exploit the operation, url, and filename... Moderate Unreviewed
CVE-2025-67810 was published Jan 9, 2026
A lack of rate limiting in the login page of shiori v1.7.4 and below allows attackers to bypass... Moderate Unreviewed
CVE-2025-60538 was published Jan 9, 2026
A DLL hijacking vulnerability in Axtion ODISSAAS ODIS v1.8.4 allows attackers to execute... Moderate Unreviewed
CVE-2025-66715 was published Jan 9, 2026
A flaw has been found in code-projects Online Music Site 1.0. The impacted element is an unknown... Moderate Unreviewed
CVE-2026-0568 was published Jan 2, 2026
A vulnerability was found in code-projects Online Music Site 1.0. This impacts an unknown... Moderate Unreviewed
CVE-2026-0570 was published Jan 2, 2026
A vulnerability has been found in code-projects Online Music Site 1.0. This affects an unknown... Moderate Unreviewed
CVE-2026-0569 was published Jan 2, 2026
A vulnerability exists in Intelbras CFTV IP NVD 9032 R Ftd V2.800.00IB00C.0.T, which allows an... High Unreviewed
CVE-2025-67070 was published Jan 9, 2026
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Unknown Unreviewed
CVE-2025-46297 was published Jan 10, 2026
A vulnerability was found in Sangfor Operation and Maintenance Management System up to 3.0.8.... High Unreviewed
CVE-2025-15500 was published Jan 10, 2026
A vulnerability has been found in Sangfor Operation and Maintenance Management System up to 3.0.8... High Unreviewed
CVE-2025-15499 was published Jan 10, 2026
A memory initialization issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2025-46299 was published Jan 10, 2026
A vulnerability was determined in Sangfor Operation and Maintenance Management System up to 3.0.8... High Unreviewed
CVE-2025-15501 was published Jan 10, 2026
Improper Control of Generation of Code ('Code Injection') vulnerability in Salesforce Uni2TS on... Unknown Unreviewed
CVE-2026-22584 was published Jan 10, 2026
### Details On October 1, 2025, Palantir discovered that images uploaded through the Dossier... Low Unreviewed
CVE-2025-62487 was published Jan 10, 2026
A logic issue was addressed with improved validation. This issue is fixed in iOS 26.2 and iPadOS... Moderate Unreviewed
CVE-2025-46286 was published Jan 10, 2026
The issue was addressed with improved memory handling. This issue is fixed in tvOS 26.2, Safari... Unknown Unreviewed
CVE-2025-46298 was published Jan 10, 2026
Area9 Rhapsode 1.47.3 allows SQL Injection via multiple API endpoints accessible to authenticated... Moderate Unreviewed
CVE-2025-67811 was published Jan 9, 2026
SQL injection vulnerability in pss.sale.com 1.0 via the id parameter to the userfiles/php... Moderate Unreviewed
CVE-2025-51626 was published Jan 9, 2026
A vulnerability was identified in itsourcecode Student Management System 1.0. Affected is an... Moderate Unreviewed
CVE-2025-15168 was published Dec 29, 2025
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_reject: don't... Moderate Unreviewed
CVE-2025-38732 was published Sep 5, 2025
SM2-PKE has Unchecked AffinePoint Decoding (unwrap) in decrypt() High
CVE-2026-22699 was published for sm2 (Rust) Jan 9, 2026
XlabAITeam
Credited to XlabAITeam
Fickling vulnerable to detection bypass due to "builtins" blindness High
CVE-2026-22612 was published for fickling (pip) Jan 9, 2026
0x-Apollyon
Credited to 0x-Apollyon
SM2-PKE has 32-bit Biased Nonce Vulnerability High
CVE-2026-22698 was published for sm2 (Rust) Jan 9, 2026
XlabAITeam
Credited to XlabAITeam
pm2 Regular Expression Denial of Service vulnerability Low
CVE-2025-5891 was published for pm2 (npm) Jun 9, 2025
mhassan1
Credited to mhassan1
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database