Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,781
Maven
5,000+
npm
4,386
NuGet
772
pip
4,164
Pub
12
RubyGems
965
Rust
1,073
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,909 advisories

Loading
A vulnerability was detected in PHPEMS up to 11.0. The impacted element is an unknown function of... Low Unreviewed
CVE-2025-15242 was published Dec 30, 2025
A vulnerability has been found in PHPEMS up to 11.0. This impacts an unknown function of the... Moderate Unreviewed
CVE-2025-15244 was published Dec 30, 2025
A security flaw has been discovered in OpenCart up to 4.1.0.3. Affected by this issue is some... Moderate Unreviewed
CVE-2025-15116 was published Dec 28, 2025
A race condition was addressed with improved state handling. This issue is fixed in watchOS 26.2,... Low Unreviewed
CVE-2025-43531 was published Dec 17, 2025
filelock has a TOCTOU race condition which allows symlink attacks during lock file creation Moderate
CVE-2025-68146 was published for filelock (pip) Dec 16, 2025
tsigouris007 gaborbernat
Credited to tsigouris007 and gaborbernat
NVIDIA Resiliency Extension for Linux contains a vulnerability in the checkpointing core, where... High Unreviewed
CVE-2025-33235 was published Dec 16, 2025
The Fancy Product Designer plugin for WordPress is vulnerable to Server-Side Request Forgery in... Moderate Unreviewed
CVE-2025-13231 was published Dec 16, 2025
A memory corruption issue was addressed with improved lock state checking. This issue is fixed in... High Unreviewed
CVE-2025-43510 was published Dec 12, 2025
In bigo_worker_thread of private/google-modules/video/gchips/bigo.c, there is a possible use... Moderate Unreviewed
CVE-2025-36934 was published Dec 11, 2025
In PrepareWorkloadBuffers of gxp_main_actor.cc, there is a possible double fetch due to a race... High Unreviewed
CVE-2025-36916 was published Dec 11, 2025
Race condition in the Okta Java SDK High
CVE-2025-67505 was published for com.okta.sdk:okta-sdk-root (Maven) Dec 10, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-64661 was published Dec 9, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-64658 was published Dec 9, 2025
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-62573 was published Dec 9, 2025
Concurrent execution using shared resource with improper synchronization ('race condition') in... High Unreviewed
CVE-2025-62469 was published Dec 9, 2025
In multiple locations of UsbDataAdvancedProtectionHook.java, there is a possible way to access... High Unreviewed
CVE-2025-48625 was published Dec 8, 2025
In multiple locations, there is a possible intent filter bypass due to a race condition. This... High Unreviewed
CVE-2025-48564 was published Dec 8, 2025
Race condition vulnerability in the network module. Impact: Successful exploitation of this... High Unreviewed
CVE-2025-66327 was published Dec 8, 2025
Multi-thread race condition vulnerability in the network management module. Impact: Successful... High Unreviewed
CVE-2025-66328 was published Dec 8, 2025
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful... Moderate Unreviewed
CVE-2025-66320 was published Dec 8, 2025
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful... Moderate Unreviewed
CVE-2025-66321 was published Dec 8, 2025
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful... Moderate Unreviewed
CVE-2025-66322 was published Dec 8, 2025
Race condition vulnerability in the audio module. Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2025-66326 was published Dec 8, 2025
Race in v8 in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially... High Unreviewed
CVE-2025-13721 was published Dec 2, 2025
In aee daemon, there is a possible system crash due to a race condition. This could lead to local... Moderate Unreviewed
CVE-2025-20765 was published Dec 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database