Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,933
Erlang
39
GitHub Actions
38
Go
2,595
Maven
5,000+
npm
4,247
NuGet
754
pip
4,013
Pub
12
RubyGems
953
Rust
1,048
Swift
45
Unreviewed advisories
All unreviewed
5,000+

298,958 advisories

Loading
An error-handling issue in the Moodle router (r.php) could cause the application to display... Moderate Unreviewed
CVE-2025-62396 was published Oct 23, 2025
The router’s inconsistent response to invalid course IDs allowed attackers to infer which course... Moderate Unreviewed
CVE-2025-62397 was published Oct 23, 2025
A serious authentication flaw allowed attackers with valid credentials to bypass multi-factor... Unknown Unreviewed
CVE-2025-62398 was published Oct 23, 2025
An issue in Moodle’s timed assignment feature allowed students to bypass the time restriction,... Moderate Unreviewed
CVE-2025-62401 was published Oct 23, 2025
Moodle’s mobile and web service authentication endpoints did not sufficiently restrict repeated... High Unreviewed
CVE-2025-62399 was published Oct 23, 2025
Moodle exposed the names of hidden groups to users who had permission to create calendar events... Moderate Unreviewed
CVE-2025-62400 was published Oct 23, 2025
Stored Cross-Site Scripting (XSS) vulnerability in Energy CRM v2025 by Status Tracker Ltd,... Moderate Unreviewed
CVE-2025-40643 was published Oct 23, 2025
QuickCMS is vulnerable to multiple Stored XSS in slider editor functionality (sliders-form).... Moderate Unreviewed
CVE-2025-9981 was published Oct 23, 2025
A flaw was found in the course overview output function where user access permissions were not... Moderate Unreviewed
CVE-2025-62393 was published Oct 23, 2025
A flaw was found in the asynchronous message queue handling of the libsoup library, widely used... High Unreviewed
CVE-2025-12105 was published Oct 23, 2025
Moodle failed to verify enrolment status correctly when sending quiz notifications. As a result,... Moderate Unreviewed
CVE-2025-62394 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: net: stmmac: dwc-qos:... Moderate Unreviewed
CVE-2022-49642 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: net: dsa: qca8k: reset cpu... Moderate Unreviewed
CVE-2022-49654 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/panfrost: Fix shrinker... High Unreviewed
CVE-2022-49645 was published Oct 23, 2025
QuickCMS is vulnerable to multiple Stored XSS in page editor functionality (pages-form).... Moderate Unreviewed
CVE-2025-9980 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bam_dma:... Moderate Unreviewed
CVE-2022-49650 was published Oct 23, 2025
Rejected reason: Duplicate. Unknown Unreviewed
CVE-2024-14011 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: fscache: Fix invalidation... Moderate Unreviewed
CVE-2022-49655 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix insufficient bounds... Moderate Unreviewed
CVE-2022-49658 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix queue... Moderate Unreviewed
CVE-2022-49646 was published Oct 23, 2025
Open redirection vulnerability in MOLGENIS EMX2 v11.14.0. This vulnerability allows an attacker... Moderate Unreviewed
CVE-2025-10355 was published Oct 23, 2025
A flaw in the cohort search web service allowed users with permissions in lower contexts to... Moderate Unreviewed
CVE-2025-62395 was published Oct 23, 2025
Path Traversal vulnerability in version 4.4.2236.1 of TESI Gandia Integra Total. This issue... High Unreviewed
CVE-2025-41073 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: igc: Reinstate IGC_REMOVED... Moderate Unreviewed
CVE-2022-49605 was published Oct 23, 2025
In the Linux kernel, the following vulnerability has been resolved: net: atlantic: remove... Moderate Unreviewed
CVE-2022-49624 was published Oct 23, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database