GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
4,964 advisories
Statamic Vulnerable to Superadmin Account Takeover via Stored Cross-Site Scripting and Lack of Proper X-CSRF-TOKEN Server-Side Validation
High
CVE-2025-64112
was published
for
statamic/cms
(Composer)
Oct 30, 2025
Sharp user-provided input can be evaluated in a SharpShowTextField with Vue template syntax
Moderate
CVE-2025-62798
was published
for
code16/sharp
(Composer)
Oct 29, 2025
Admidio Vulnerable to Authenticated SQL Injection in Member Assignment Functionality
High
CVE-2025-62617
was published
for
admidio/admidio
(Composer)
Oct 22, 2025
Shopware Customer Orders can be canceled, even if refunds are disabled
Moderate
GHSA-r2vg-hvjm-fg38
was published
for
shopware/core
(Composer)
Oct 21, 2025
Shopware exposes sensitive user information via CSV export mapping
Moderate
GHSA-27c9-vp3w-6ww8
was published
for
shopware/core
(Composer)
Oct 21, 2025
ProTip!
Advisories are also available from the
GraphQL API