GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,576
Composer 4,462
Erlang 33
GitHub Actions 22
Go 2,159
Maven 5,338
npm 3,820
NuGet 696
pip 3,502
Pub 12
RubyGems 903
Rust 904
Swift 38

Unreviewed advisories

All unreviewed 247,493

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

115,836 advisories

Filter by severity

Sort by

Least recently updated

Substance3D - Modeler versions 1.15.0 and earlier are affected by an out-of-bounds read... Moderate Unreviewed

CVE-2025-27180 was published Mar 11, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2025-28870 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in dangrossman W3Counter Free Real-Time Web Stats... Moderate Unreviewed

CVE-2025-28856 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in CodeVibrant Maintenance Notice allows Cross... Moderate Unreviewed

CVE-2025-28859 was published Mar 11, 2025

Missing Authorization vulnerability in jwpegram Block Spam By Math Reloaded allows Accessing... Moderate Unreviewed

CVE-2025-28872 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Carlos Minatti Delete Original Image allows... Moderate Unreviewed

CVE-2025-28863 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ZipList ZipList Recipe allows Cross Site... Moderate Unreviewed

CVE-2025-28868 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in smerriman Login Logger allows Cross Site... Moderate Unreviewed

CVE-2025-28866 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in stesvis Frontpage category filter allows Cross... Moderate Unreviewed

CVE-2025-28867 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Planet Studio Builder for Contact Form 7 by... Moderate Unreviewed

CVE-2025-28864 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Venugopal Comment Date and Gravatar remover... Moderate Unreviewed

CVE-2025-28862 was published Mar 11, 2025

Substance3D - Modeler versions 1.15.0 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed

CVE-2025-21170 was published Mar 11, 2025

A vulnerability classified as problematic was found in aitangbao springboot-manager 3.0. This... Moderate Unreviewed

CVE-2025-2207 was published Mar 11, 2025

A vulnerability classified as problematic has been found in aitangbao springboot-manager 3.0.... Moderate Unreviewed

CVE-2025-2206 was published Mar 11, 2025

NVIDIA Riva contains a vulnerability where a user could cause an improper access control issue. A... Moderate Unreviewed

CVE-2025-23243 was published Mar 11, 2025

Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an... Moderate Unreviewed

CVE-2025-27164 was published Mar 11, 2025

Illustrator versions 29.2.1, 28.7.4 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed

CVE-2025-27170 was published Mar 11, 2025

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed

CVE-2025-27179 was published Mar 11, 2025

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a NULL Pointer Dereference... Moderate Unreviewed

CVE-2025-27176 was published Mar 11, 2025

Illustrator versions 29.2.1, 28.7.4 and earlier are affected by an out-of-bounds read... Moderate Unreviewed

CVE-2025-24448 was published Mar 11, 2025

Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an... Moderate Unreviewed

CVE-2025-27163 was published Mar 11, 2025

Illustrator versions 29.2.1, 28.7.4 and earlier are affected by an out-of-bounds read... Moderate Unreviewed

CVE-2025-24449 was published Mar 11, 2025

Null pointer dereference in Windows Kernel Memory allows an authorized attacker to deny service... Moderate Unreviewed

CVE-2025-24997 was published Mar 11, 2025

Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an... Moderate Unreviewed

CVE-2025-24431 was published Mar 11, 2025

Insertion of sensitive information into log file in Windows NTFS allows an unauthorized attacker... Moderate Unreviewed

CVE-2025-24984 was published Mar 11, 2025

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

115,836 advisories