GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,350
Composer 4,652
Erlang 34
GitHub Actions 26
Go 2,257
Maven 5,512
npm 3,909
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,240

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22,132 advisories

Filter by severity

Sort by

Least recently updated

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-32565 was published Apr 11, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31599 was published Apr 11, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31565 was published Apr 11, 2025

Incorrect Privilege Assignment vulnerability in Rankology Rankology SEO – On-site SEO... Critical Unreviewed

CVE-2025-32491 was published Apr 11, 2025

The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to Local... Critical Unreviewed

CVE-2025-2636 was published Apr 11, 2025

In ConnMan through 1.44, the lookup string in ns_resolv in dnsproxy.c can be NULL or an empty... Critical Unreviewed

CVE-2025-32743 was published Apr 10, 2025

In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image... Critical Unreviewed

CVE-2025-32754 was published Apr 10, 2025

In jenkins/ssh-slave Docker images based on Debian, SSH host keys are generated on image creation... Critical Unreviewed

CVE-2025-32755 was published Apr 10, 2025

An authentication bypass vulnerability was found in Videx's CyberAudit-Web. Through the... Critical Unreviewed

CVE-2025-22375 was published Apr 10, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Brian Batt - elearningfreak.com... Critical Unreviewed

CVE-2025-32202 was published Apr 10, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in LABCAT Processing Projects... Critical Unreviewed

CVE-2025-32206 was published Apr 10, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Nirmal Kumar Ram WP Remote... Critical Unreviewed

CVE-2025-32140 was published Apr 10, 2025

Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.1.0, contains a use of default password... Critical Unreviewed

CVE-2025-27690 was published Apr 10, 2025

An issue in TOTVS Framework (Linha Protheus) 12.1.2310 allows attackers to bypass multi-factor... Critical Unreviewed

CVE-2024-55210 was published Apr 9, 2025

Injection Vulnerabilities: Attackers can inject malicious code, potentially gaining control over... Critical Unreviewed

CVE-2025-3115 was published Apr 9, 2025

Code Execution via Malicious Files: Attackers can create specially crafted files with embedded... Critical Unreviewed

CVE-2025-3114 was published Apr 9, 2025

Incorrect Privilege Assignment vulnerability in Mestres do WP Checkout Mestres WP allows... Critical Unreviewed

CVE-2025-32695 was published Apr 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in anantaddons Anant Addons for Elementor allows... Critical Unreviewed

CVE-2025-32641 was published Apr 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in appsbd Vite Coupon allows Remote Code... Critical Unreviewed

CVE-2025-32642 was published Apr 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Agence web Eoxia - Montpellier WP shop allows... Critical Unreviewed

CVE-2025-32576 was published Apr 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Uncodethemes Ultra Demo Importer allows Upload... Critical Unreviewed

CVE-2025-32496 was published Apr 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Adam Nowak Buddypress Humanity allows Cross... Critical Unreviewed

CVE-2025-31033 was published Apr 9, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Bogdan Bendziukov Squeeze allows... Critical Unreviewed

CVE-2025-31002 was published Apr 9, 2025

OS command injection vulnerability in the specific service exists in Wi-Fi AP UNIT 'AC-WPS-11ac... Critical Unreviewed

CVE-2025-27797 was published Apr 9, 2025

wikiplugin_includetpl in lib/wiki-plugins/wikiplugin_includetpl.php in Tiki before 28.3... Critical Unreviewed

CVE-2025-32461 was published Apr 9, 2025

Previous 1 2 … 5 6 7 8 9 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

22,132 advisories