GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,350
Composer 4,652
Erlang 34
GitHub Actions 26
Go 2,257
Maven 5,512
npm 3,909
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,217

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22,127 advisories

Filter by severity

Sort by

Least recently updated

Deserialization of Untrusted Data vulnerability in ssvadim SS Quiz allows Object Injection. This... Critical Unreviewed

CVE-2025-27287 was published Apr 17, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-22655 was published Apr 17, 2025

Hazelcast Management Center through 6.0 allows remote code execution via a JndiLoginModule user... Critical Unreviewed

CVE-2024-56518 was published Apr 17, 2025

Buffer Overflow vulnerability in ALFA_CAMPRO-co-2.29 allows a remote attacker to execute... Critical Unreviewed

CVE-2025-29045 was published Apr 17, 2025

Buffer Overflow vulnerability inALFA WiFi CampPro router ALFA_CAMPRO-co-2.29 allows a remote... Critical Unreviewed

CVE-2025-29046 was published Apr 17, 2025

Buffer Overflow vulnerability inALFA WiFi CampPro router ALFA_CAMPRO-co-2.29 allows a remote... Critical Unreviewed

CVE-2025-29047 was published Apr 17, 2025

Improper Verification of Source of a Communication Channel in Work Desktop for Mac versions below... Critical Unreviewed

CVE-2025-3651 was published Apr 17, 2025

An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed

CVE-2025-29041 was published Apr 17, 2025

An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed

CVE-2025-29040 was published Apr 17, 2025

Buffer Overflow vulnerability in Netgear- R61 router V1.0.1.28 allows a remote attacker to... Critical Unreviewed

CVE-2025-29044 was published Apr 17, 2025

A valid, authenticated user with sufficient privileges and who is aware of Continuous Compliance... Critical Unreviewed

CVE-2025-3113 was published Apr 17, 2025

A improper control of filename for include/require statement in PHP program vulnerability in the... Critical Unreviewed

CVE-2025-31340 was published Apr 17, 2025

Out-of-Bounds Read in ip_set_bitmap_ip.c in Google ChromeOS Kernel Versions 6.1, 5.15, 5.10, 5.4,... Critical Unreviewed

CVE-2025-2073 was published Apr 17, 2025

Access Control Vulnerability in Gerrit chromiumos project configuration in Google ChromeOS 131.0... Critical Unreviewed

CVE-2025-1568 was published Apr 17, 2025

ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 124.0.6367.34 on... Critical Unreviewed

CVE-2025-1704 was published Apr 17, 2025

Overview The product receives input from an upstream component, but it does not restrict... Critical Unreviewed

CVE-2025-0756 was published Apr 17, 2025

SourceCodester Company Website CMS 1.0 contains a file upload vulnerability via the "Create... Critical Unreviewed

CVE-2025-29708 was published Apr 16, 2025

SourceCodester Company Website CMS 1.0 has a File upload vulnerability via the "Create portfolio"... Critical Unreviewed

CVE-2025-29709 was published Apr 16, 2025

Wallos <=2.38.2 has a file upload vulnerability in the restore database function, which allows... Critical Unreviewed

CVE-2024-55372 was published Apr 16, 2025

Wallos <= 2.38.2 has a file upload vulnerability in the restore backup function, which allows... Critical Unreviewed

CVE-2024-55371 was published Apr 16, 2025

SQL Injection vulnerability exists in the TP-Link M7450 4G LTE Mobile Wi-Fi Router Firmware... Critical Unreviewed

CVE-2025-29653 was published Apr 16, 2025

SQL Injection vulnerability exists in the TP-Link M7650 4G LTE Mobile Wi-Fi Router Firmware... Critical Unreviewed

CVE-2025-29651 was published Apr 16, 2025

SQL Injection vulnerability exists in the TP-Link M7000 4G LTE Mobile Wi-Fi Router Firmware... Critical Unreviewed

CVE-2025-29652 was published Apr 16, 2025

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The... Critical Unreviewed

CVE-2025-27495 was published Apr 16, 2025

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The... Critical Unreviewed

CVE-2025-27539 was published Apr 16, 2025

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

22,127 advisories