WARNING: THIS SITE IS A MIRROR OF GITHUB.COM / IT CANNOT LOGIN OR REGISTER ACCOUNTS / THE CONTENTS ARE PROVIDED AS-IS / THIS SITE ASSUMES NO RESPONSIBILITY FOR ANY DISPLAYED CONTENT OR LINKS / IF YOU FOUND SOMETHING MAY NOT GOOD FOR EVERYONE, CONTACT ADMIN AT ilovescratch@foxmail.com
Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,717
Maven
5,000+
npm
4,328
NuGet
761
pip
4,105
Pub
12
RubyGems
958
Rust
1,065
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,040 advisories

Loading
A vulnerability has been found in TykoDev cherry-studio-TykoFork 0.1. This issue affects the... Moderate Unreviewed
CVE-2025-14204 was published Dec 8, 2025
nitro-tpm-pcr-compute may allow kernel command line modification by an account operator Moderate
GHSA-xrv8-2pf5-f3q7 was published for nitro-tpm-pcr-compute (Rust) Dec 5, 2025
agraf mariusknaust
Credited to agraf and mariusknaust
A vulnerability was detected in Edimax BR-6478AC V3 1.0.15. Impacted is the function sub_416990... Moderate Unreviewed
CVE-2025-14093 was published Dec 5, 2025
A flaw has been found in Edimax BR-6478AC V3 1.0.15. The affected element is the function... Moderate Unreviewed
CVE-2025-14094 was published Dec 5, 2025
A security vulnerability has been detected in Edimax BR-6478AC V3 1.0.15. This issue affects the... Moderate Unreviewed
CVE-2025-14092 was published Dec 5, 2025
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local... Moderate Unreviewed
CVE-2025-64052 was published Dec 5, 2025
The WatchGuard Mobile VPN with SSL Client on Windows allows a locally authenticated non... Moderate Unreviewed
CVE-2025-1910 was published Dec 5, 2025
mcp-server-kubernetes has potential security issue in exec_in_pod tool Moderate
CVE-2025-66404 was published for mcp-server-kubernetes (npm) Dec 3, 2025
lavenderlilly
Credited to lavenderlilly
AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... High Unreviewed
CVE-2025-57201 was published Dec 3, 2025
AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... High Unreviewed
CVE-2025-57199 was published Dec 3, 2025
AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... High Unreviewed
CVE-2025-57198 was published Dec 3, 2025
Claude Code Command Validation Bypass Allows Arbitrary Code Execution High
CVE-2025-66032 was published for @anthropic-ai/claude-code (npm) Dec 3, 2025
Ry0taK
Credited to Ry0taK
AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... Moderate Unreviewed
CVE-2025-57200 was published Dec 3, 2025
FeehiCMS Has a Remote Code Execution via Unrestricted File Upload in Ad Management Moderate
CVE-2025-65657 was published for feehi/cms (Composer) Dec 2, 2025
A vulnerability has been found in D-Link R15 (AX1500) 1.20.01 and below. By manipulating the... Critical Unreviewed
CVE-2025-60854 was published Dec 2, 2025
willitmerge has a Command Injection vulnerability Moderate
CVE-2025-66219 was published for willitmerge (npm) Nov 26, 2025
lirantal
Credited to lirantal
An issue in Blurams Lumi Security Camera (A31C) v23.1227.472.2926 allows local physical attackers... Moderate Unreviewed
CVE-2025-63674 was published Nov 25, 2025
iStats contains an insecure XPC service that allows local, unprivileged users to escalate their... Critical Unreviewed
CVE-2025-11921 was published Nov 24, 2025
A vulnerability was identified in D-Link DIR-852 1.00. This issue affects some unknown processing... Moderate Unreviewed
CVE-2025-13562 was published Nov 23, 2025
The read function in file thinkphp\library\think\template\driver\File.php in ThinkPHP 5.0.24... Moderate Unreviewed
CVE-2025-63888 was published Nov 20, 2025
An issue in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before Logic Version v6.00 -... High Unreviewed
CVE-2025-60738 was published Nov 20, 2025
pnetlab 5.3.11 is vulnerable to Command Injection via the qemu_options parameter. Moderate Unreviewed
CVE-2025-63749 was published Nov 18, 2025
A vulnerability in the command line interface of affected devices could allow an authenticated... Moderate Unreviewed
CVE-2025-37162 was published Nov 18, 2025
A command injection vulnerability has been identified in the command line interface of the HPE... High Unreviewed
CVE-2025-37163 was published Nov 18, 2025
A remote command execution (RCE) vulnerability was discovered in all H3C ERG3/ERG5 series routers... Moderate Unreviewed
CVE-2025-63258 was published Nov 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database