Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,791
Maven
5,000+
npm
4,399
NuGet
772
pip
4,175
Pub
12
RubyGems
965
Rust
1,074
Swift
45
Unreviewed advisories
All unreviewed
5,000+

147,011 advisories

Loading
Oak Server has ReDoS in x-forwarded-proto and x-forwarded-for headers Moderate
CVE-2025-55152 was published for @oakserver/oak (npm) Aug 12, 2025
dellalibera
Credited to dellalibera
slab allows out-of-bounds access in `get_disjoint_mut` due to incorrect bounds check Moderate
CVE-2025-55159 was published for slab (Rust) Aug 11, 2025
mox692
Credited to mox692
Mattermost Confluence Plugin is Missing Authentication for Critical Function Moderate
CVE-2025-54478 was published for github.com/mattermost/mattermost-plugin-confluence (Go) Aug 11, 2025
Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions Moderate
CVE-2025-54463 was published for github.com/mattermost/mattermost-plugin-confluence (Go) Aug 11, 2025
Mattermost Confluence Plugin has Missing Authorization vulnerability Moderate
CVE-2025-8285 was published for github.com/mattermost/mattermost-plugin-confluence (Go) Aug 11, 2025
Mattermost Confluence Plugin has Missing Authorization vulnerability Moderate
CVE-2025-53910 was published for github.com/mattermost/mattermost-plugin-confluence (Go) Aug 11, 2025
Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions Moderate
CVE-2025-53514 was published for github.com/mattermost/mattermost-plugin-confluence (Go) Aug 11, 2025
Mattermost Confluence Plugin has Missing Authorization vulnerability Moderate
CVE-2025-54458 was published for github.com/mattermost/mattermost-plugin-confluence (Go) Aug 11, 2025
libcsp 2.0 is vulnerable to Buffer Overflow in the csp_usart_open() function at drivers/usart... Moderate Unreviewed
CVE-2025-51824 was published Aug 11, 2025
Mattermost Confluence Plugin has Missing Authorization vulnerability Moderate
CVE-2025-48731 was published for github.com/mattermost/mattermost-plugin-confluence (Go) Aug 11, 2025
libcsp 2.0 is vulnerable to Buffer Overflow in the csp_eth_init() function due to improper... Moderate Unreviewed
CVE-2025-51823 was published Aug 11, 2025
Omnissa Workspace ONE UEM contains a Server-Side Request Forgery (SSRF) Vulnerability. A... Moderate Unreviewed
CVE-2025-25229 was published Aug 11, 2025
Mattermost Confluence Plugin has Missing Authorization vulnerability Moderate
CVE-2025-44001 was published for github.com/mattermost/mattermost-plugin-confluence (Go) Aug 11, 2025
YugabyteDB Anywhere web server does not properly enforce authentication for the /metamaster... Moderate Unreviewed
CVE-2025-8866 was published Aug 11, 2025
Shared Access Signature token is not masked in the backup configuration response and is also... Moderate Unreviewed
CVE-2025-8864 was published Aug 11, 2025
A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function... Moderate Unreviewed
CVE-2025-8851 was published Aug 11, 2025
The YugabyteDB tablet server contains a flaw in its YCQL query handling that can trigger a null... Moderate Unreviewed
CVE-2025-8865 was published Aug 11, 2025
A vulnerability was identified in code-projects eBlog Site 1.0. Affected by this vulnerability is... Moderate Unreviewed
CVE-2025-8859 was published Aug 11, 2025
A vulnerability was identified in WuKongOpenSource WukongCRM 11.0. This affects an unknown part... Moderate Unreviewed
CVE-2025-8852 was published Aug 11, 2025
MacOS version of GIMP bundles a Python interpreter that inherits the Transparency, Consent, and... Moderate Unreviewed
CVE-2025-8672 was published Aug 11, 2025
A vulnerability was identified in NASM Netwide Assember 2.17rc0. This issue affects the function... Moderate Unreviewed
CVE-2025-8845 was published Aug 11, 2025
A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function... Moderate Unreviewed
CVE-2025-8846 was published Aug 11, 2025
A vulnerability was found in yangzongzhuan RuoYi up to 4.8.1. Affected by this vulnerability is... Moderate Unreviewed
CVE-2025-8847 was published Aug 11, 2025
TinyScientist has Path Traversal Vulnerability in PDF Review Function (CWE-22) Moderate
CVE-2025-55149 was published for tiny-scientist (pip) Aug 11, 2025
A vulnerability was determined in jshERP up to 3.5. Affected is an unknown function of the file ... Moderate Unreviewed
CVE-2025-8840 was published Aug 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database