GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,350
Composer 4,652
Erlang 34
GitHub Actions 26
Go 2,257
Maven 5,512
npm 3,909
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,240

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22,132 advisories

Filter by severity

Sort by

Least recently updated

A flaw was found in libsoup, which is vulnerable to a use-after-free memory issue not on the heap... Critical Unreviewed

CVE-2025-32911 was published Apr 15, 2025

The TOTOLINK A810R V4.1.2cu.5182_B20201026 were found to contain a pre-auth remote command... Critical Unreviewed

CVE-2025-28137 was published Apr 15, 2025

Deserialization of Untrusted Data vulnerability in NotFound GNUCommerce allows Object Injection.... Critical Unreviewed

CVE-2025-30985 was published Apr 15, 2025

A malicious, authenticated user in Aidex, versions prior to 1.7, could list credentials of other... Critical Unreviewed

CVE-2025-3578 was published Apr 15, 2025

In versions prior to Aidex 1.7, an authenticated malicious user, taking advantage of an open... Critical Unreviewed

CVE-2025-3579 was published Apr 15, 2025

In HylaFAX Enterprise Web Interface and AvantFAX, the language form element is not properly... Critical Unreviewed

CVE-2025-1782 was published Apr 14, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-22371 was published Apr 14, 2025

Insufficiently Protected Credentials vulnerability in SicommNet BASEC on SaaS allows Password... Critical Unreviewed

CVE-2025-22372 was published Apr 14, 2025

A session management vulnerability exists in Apache Roller before version 6.1.5 where active user... Critical Unreviewed

CVE-2025-24859 was published Apr 14, 2025

Prisma Access Browser: Inappropriate control behavior in Prisma Access Browser Critical Unreviewed

CVE-2025-0129 was published Apr 12, 2025

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki -... Critical Unreviewed

CVE-2025-32074 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiments... Critical Unreviewed

CVE-2025-32079 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - HTML Tags allows... Critical Unreviewed

CVE-2025-32073 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Growth... Critical Unreviewed

CVE-2025-32067 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikidata... Critical Unreviewed

CVE-2025-32071 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - AJAX Poll... Critical Unreviewed

CVE-2025-32070 was published Apr 11, 2025

Incorrect Authorization vulnerability in The Wikimedia Foundation Mediawiki - OAuth Extension... Critical Unreviewed

CVE-2025-32068 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikibase Media... Critical Unreviewed

CVE-2025-32069 was published Apr 11, 2025

The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress... Critical Unreviewed

CVE-2025-3439 was published Apr 11, 2025

Deserialization of Untrusted Data vulnerability in magepeopleteam WpBookingly allows Object... Critical Unreviewed

CVE-2025-32607 was published Apr 11, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-32603 was published Apr 11, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in SoftClever Limited Sync Posts... Critical Unreviewed

CVE-2025-32579 was published Apr 11, 2025

Deserialization of Untrusted Data vulnerability in empik EmpikPlace for Woocommerce allows Object... Critical Unreviewed

CVE-2025-32568 was published Apr 11, 2025

Deserialization of Untrusted Data vulnerability in RealMag777 TableOn – WordPress Posts Table... Critical Unreviewed

CVE-2025-32569 was published Apr 11, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Critical Unreviewed

CVE-2025-32577 was published Apr 11, 2025

Previous 1 2 3 4 5 6 7 8 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

22,132 advisories