GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,920
Composer 5,068
Erlang 39
GitHub Actions 38
Go 2,722
Maven 6,143
npm 4,329
NuGet 762
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 279,212

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

279,212 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL injection vulnerability in /php/api_patient_schedule.php in SourceCodester Patients Waiting... Unknown Unreviewed

CVE-2025-64081 was published Dec 8, 2025

Tenda AX3 v16.03.12.11 contains a stack overflow in formSetIptv via the iptvType parameter, which... Moderate Unreviewed

CVE-2025-65804 was published Dec 8, 2025

In isValidMediaUri of SettingsProvider.java, there is a possible cross user media read due to a... Unknown Unreviewed

CVE-2025-48608 was published Dec 8, 2025

In multiple locations of UsbDataAdvancedProtectionHook.java, there is a possible way to access... Unknown Unreviewed

CVE-2025-48625 was published Dec 8, 2025

In ProcessArea of dng_misc_opcodes.cpp, there is a possible out of bounds read due to a buffer... Unknown Unreviewed

CVE-2025-48622 was published Dec 8, 2025

In startNextMatchingActivity of ActivityTaskManagerService.java, there is a possible way to... Unknown Unreviewed

CVE-2025-48627 was published Dec 8, 2025

In DefaultTransitionHandler.java, there is a possible way to enable a tapjacking attack due to a... Unknown Unreviewed

CVE-2025-48621 was published Dec 8, 2025

In findAvailRecognizer of VoiceInteractionManagerService.java, there is a possible way to become... Unknown Unreviewed

CVE-2025-48629 was published Dec 8, 2025

In multiple locations, there is a possible permanent denial of service due to resource exhaustion... Unknown Unreviewed

CVE-2025-48569 was published Dec 8, 2025

In DefaultTransitionHandler.java, there is a possible way to unknowingly grant permissions to an... Unknown Unreviewed

CVE-2025-48639 was published Dec 8, 2025

In multiple functions of arm-smmu-v3.c, there is a possible out-of-bounds write due to improper... Unknown Unreviewed

CVE-2025-48624 was published Dec 8, 2025

A lack of file name validation or verification in the Attachment service of usememos memos v0.25... Moderate Unreviewed

CVE-2025-65799 was published Dec 8, 2025

In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service... Unknown Unreviewed

CVE-2025-48631 was published Dec 8, 2025

In hasAccountsOnAnyUser of DevicePolicyManagerService.java, there is a possible way to add a... Unknown Unreviewed

CVE-2025-48633 was published Dec 8, 2025

In setDisplayName of AssociationRequest.java, there is a possible way to cause CDM associations... Unknown Unreviewed

CVE-2025-48632 was published Dec 8, 2025

In init_pkvm_hyp_vcpu of pkvm.c, there is a possible out of bounds write due to improper input... Unknown Unreviewed

CVE-2025-48623 was published Dec 8, 2025

In validateIconUserBoundary of PrintManagerService.java, there is a possible cross-user image... Unknown Unreviewed

CVE-2025-48628 was published Dec 8, 2025

HummerRisk thru v1.5.0 is using a vulnerable Snakeyaml component allowing attackers to achieve... Unknown Unreviewed

CVE-2025-63721 was published Dec 8, 2025

In multiple locations, there is a possible way to launch an application from the background due... Unknown Unreviewed

CVE-2025-48626 was published Dec 8, 2025

In __pkvm_load_tracing of trace.c, there is a possible out-of-bounds write due to improper input... Unknown Unreviewed

CVE-2025-48638 was published Dec 8, 2025

Incorrect access control in the Identity Provider service of usememos memos v0.25.2 allows... Unknown Unreviewed

CVE-2025-65797 was published Dec 8, 2025

In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer... Unknown Unreviewed

CVE-2025-48637 was published Dec 8, 2025

A memory disclosure vulnerability exists in libcoap's OSCORE configuration parser in libcoap... Moderate Unreviewed

CVE-2025-59391 was published Dec 8, 2025

Authenticated append-style command-injection Ruijie APs (AP_RGOS 11.1.x) allows an authenticated... Unknown Unreviewed

CVE-2025-65363 was published Dec 8, 2025

In preparePackage of InstallPackageHelper.java, there is a possible way for an app to appear... Unknown Unreviewed

CVE-2025-48606 was published Dec 8, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

279,212 advisories