GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,350
Composer 4,652
Erlang 34
GitHub Actions 26
Go 2,257
Maven 5,512
npm 3,909
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,217

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22,127 advisories

Filter by severity

Sort by

Least recently updated

A SQL Injection vulnerability exists in the `u` parameter of the progress-body-weight.php... Critical Unreviewed

CVE-2025-28009 was published Apr 17, 2025

A RCE vulnerability in the core application in LandChat 3.25.12.18 allows an unauthenticated... Critical Unreviewed

CVE-2025-29662 was published Apr 17, 2025

Deserialization of Untrusted Data vulnerability in Mahmudul Hasan Arif FluentBoards allows Object... Critical Unreviewed

CVE-2025-39551 was published Apr 17, 2025

Deserialization of Untrusted Data vulnerability in Shahjahan Jewel FluentCommunity allows Object... Critical Unreviewed

CVE-2025-39550 was published Apr 17, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-39587 was published Apr 17, 2025

Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons... Critical Unreviewed

CVE-2025-39588 was published Apr 17, 2025

Weak Authentication vulnerability in Quentn.com GmbH Quentn WP allows Privilege Escalation. This... Critical Unreviewed

CVE-2025-39596 was published Apr 17, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-39595 was published Apr 17, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in aidraw I Draw allows Using... Critical Unreviewed

CVE-2025-39436 was published Apr 17, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG Lite allows... Critical Unreviewed

CVE-2025-32682 was published Apr 17, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-32626 was published Apr 17, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-32636 was published Apr 17, 2025

Incorrect Privilege Assignment vulnerability in Projectopia Projectopia allows Privilege... Critical Unreviewed

CVE-2025-32648 was published Apr 17, 2025

Deserialization of Untrusted Data vulnerability in wpWax HelpGent allows Object Injection. This... Critical Unreviewed

CVE-2025-32658 was published Apr 17, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in solacewp Solace Extra allows... Critical Unreviewed

CVE-2025-32652 was published Apr 17, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in JoomSky JS Job Manager allows... Critical Unreviewed

CVE-2025-32660 was published Apr 17, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-32665 was published Apr 17, 2025

Deserialization of Untrusted Data vulnerability in Climax Themes Kata Plus allows Object... Critical Unreviewed

CVE-2025-32572 was published Apr 17, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in termel PDF 2 Post... Critical Unreviewed

CVE-2025-32583 was published Apr 17, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-27302 was published Apr 17, 2025

Weak Password Recovery Mechanism for Forgotten Password vulnerability in videowhisper Paid... Critical Unreviewed

CVE-2025-31380 was published Apr 17, 2025

An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed

CVE-2025-29042 was published Apr 17, 2025

An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed

CVE-2025-29043 was published Apr 17, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in rockgod100 Theme File Duplicator... Critical Unreviewed

CVE-2025-27282 was published Apr 17, 2025

Deserialization of Untrusted Data vulnerability in saoshyant1994 Saoshyant Slider allows Object... Critical Unreviewed

CVE-2025-27286 was published Apr 17, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

22,127 advisories