Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,771
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113,962 advisories

Loading
Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site... Moderate Unreviewed
CVE-2024-53964 was published Feb 5, 2025
Adobe Experience Manager versions 6.5.21 and earlier are affected by a DOM-based Cross-Site... Moderate Unreviewed
CVE-2024-53963 was published Feb 5, 2025
Adobe Experience Manager versions 6.5.21 and earlier are affected by a DOM-based Cross-Site... Moderate Unreviewed
CVE-2024-53965 was published Feb 5, 2025
Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site... Moderate Unreviewed
CVE-2024-53966 was published Feb 5, 2025
The "NagVis" component within Checkmk is vulnerable to reflected cross-site scripting. An... Moderate Unreviewed
CVE-2024-13722 was published Feb 5, 2025
Multiple Western Telematic (WTI) products contain a web interface that is vulnerable to a local... Moderate Unreviewed
CVE-2025-0630 was published Feb 4, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 is vulnerable to cross... Moderate Unreviewed
CVE-2024-40700 was published Feb 4, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 transmits sensitive or... Moderate Unreviewed
CVE-2024-43187 was published Feb 4, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a local... Moderate Unreviewed
CVE-2024-45657 was published Feb 4, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 is vulnerable to cross... Moderate Unreviewed
CVE-2024-35138 was published Feb 4, 2025
A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy... Moderate Unreviewed
CVE-2025-25039 was published Feb 4, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote... Moderate Unreviewed
CVE-2024-45659 was published Feb 4, 2025
A vulnerability in HPE Aruba Networking ClearPass Policy Manager may, under certain circumstances... Moderate Unreviewed
CVE-2025-23060 was published Feb 4, 2025
A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy... Moderate Unreviewed
CVE-2025-23059 was published Feb 4, 2025
Brocade SANnav versions before 2.2.2 log Brocade Fabric OS switch passwords when debugging is... Moderate Unreviewed
CVE-2022-43936 was published Feb 4, 2025
An information exposure through log file vulnerability exists in Brocade SANnav before Brocade... Moderate Unreviewed
CVE-2022-43933 was published Feb 4, 2025
An information exposure through log file vulnerability exists in Brocade SANnav before Brocade... Moderate Unreviewed
CVE-2022-43935 was published Feb 4, 2025
Possible information exposure through log file vulnerability where sensitive fields are recorded... Moderate Unreviewed
CVE-2022-43937 was published Feb 4, 2025
Missing Authorization vulnerability in FameThemes OnePress allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2025-22643 was published Feb 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-22641 was published Feb 4, 2025
Missing Authorization vulnerability in Ksher Ksher allows Exploiting Incorrectly Configured... Moderate Unreviewed
CVE-2025-22730 was published Feb 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-22653 was published Feb 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-22675 was published Feb 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-22674 was published Feb 4, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-22642 was published Feb 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database