Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
70
GitHub Actions
52
Go
3,904
Maven
5,000+
npm
5,000+
NuGet
967
pip
5,000+
Pub
13
RubyGems
1,062
Rust
1,374
Swift
54
Unreviewed advisories
All unreviewed
5,000+

126,194 advisories

Loading
Access of Uninitialized Pointer vulnerability in TP-Link WR940N and WR941ND allows local... High Unreviewed
CVE-2025-14739 was published Dec 18, 2025
A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version... High Unreviewed
CVE-2025-65565 was published Dec 18, 2025
The free5GC UPF suffers from a lack of bounds checking on the SEID when processing PFCP Session... High Unreviewed
CVE-2025-65562 was published Dec 18, 2025
A denial-of-service vulnerability exists in the omec-upf (upf-epc-pfcpiface) in version upf-epc... High Unreviewed
CVE-2025-65564 was published Dec 18, 2025
An issue was discovered in Open5GS 2.7.5-49-g465e90f, when processing a PFCP Session... High Unreviewed
CVE-2025-65559 was published Dec 18, 2025
A denial-of-service vulnerability exists in the omec-project UPF (component upf-epc/pfcpiface) up... High Unreviewed
CVE-2025-65563 was published Dec 18, 2025
An issue was discovered in function LocalNode.Sess in free5GC 4.1.0 allowing attackers to cause a... High Unreviewed
CVE-2025-65561 was published Dec 18, 2025
A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version... High Unreviewed
CVE-2025-65568 was published Dec 18, 2025
A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version... High Unreviewed
CVE-2025-65567 was published Dec 18, 2025
An access control bypass vulnerability in Kentico Xperience allows administrators to modify... High Unreviewed
CVE-2020-36890 was published Dec 18, 2025
Storybook manager bundle may expose environment variables during build High
CVE-2025-68429 was published for storybook (npm) Dec 18, 2025
matthew-gill Credited to matthew-gill
tinacms is vulnerable to arbitrary code execution High
CVE-2025-68278 was published for @tinacms/cli (npm) Dec 18, 2025
cristianstaicu Credited to cristianstaicu
A vulnerability was detected in D-Link DIR-605 202WWB03. Affected by this issue is some unknown... High Unreviewed
CVE-2025-14884 was published Dec 18, 2025
Command Injection vulnerability in TP-Link WA850RE (httpd modules) allows authenticated adjacent... High Unreviewed
CVE-2025-14737 was published Dec 18, 2025
An authentication bypass vulnerability exists in Open-WebUI <=0.6.32 in the /api/config endpoint.... High Unreviewed
CVE-2025-63391 was published Dec 18, 2025
due to insufficient sanitazation in Vega’s `convert()` function when `safeMode` is enabled and... High Unreviewed
CVE-2025-14896 was published Dec 18, 2025
A security flaw has been discovered in Tenda WH450 1.0.0.18. This impacts an unknown function of... High Unreviewed
CVE-2025-14878 was published Dec 18, 2025
A weakness has been identified in Tenda WH450 1.0.0.18. Affected is an unknown function of the... High Unreviewed
CVE-2025-14879 was published Dec 18, 2025
There is a stack-based buffer overflow vulnerability in NI LabVIEW in LVResFile:... High Unreviewed
CVE-2025-64469 was published Dec 18, 2025
There is a use-after-free vulnerability in sentry!sentry_span_set_data() when parsing a corrupted... High Unreviewed
CVE-2025-64468 was published Dec 18, 2025
WODESYS WD-R608U router (also known as WDR122B V2.0 and WDR28) is vulnerable to Broken Access... High Unreviewed
CVE-2025-65010 was published Dec 18, 2025
There is an out of bounds read vulnerability in NI LabVIEW in lvre!ExecPostedProcRecPost() when... High Unreviewed
CVE-2025-64466 was published Dec 18, 2025
In WODESYS WD-R608U router (also known as WDR122B V2.0 and WDR28) due to lack of authentication... High Unreviewed
CVE-2025-65007 was published Dec 18, 2025
In WODESYS WD-R608U router (also known as WDR122B V2.0 and WDR28) an unauthorised user can view... High Unreviewed
CVE-2025-65011 was published Dec 18, 2025
There is an out of bounds read vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry() when... High Unreviewed
CVE-2025-64467 was published Dec 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database