GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,850
Composer 5,061
Erlang 39
GitHub Actions 38
Go 2,690
Maven 6,134
npm 4,320
NuGet 760
pip 4,096
Pub 12
RubyGems 958
Rust 1,063
Swift 45

Unreviewed advisories

All unreviewed 278,590

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,391 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An unauthenticated attacker can trick a local user into executing arbitrary code by opening a... High Unreviewed

CVE-2025-41700 was published Dec 1, 2025

The Houzez theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and... Moderate Unreviewed

CVE-2025-9191 was published Nov 26, 2025

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /serialNumber/addSerialNumber endpoint... Critical Unreviewed

CVE-2025-51746 was published Nov 25, 2025

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /role/addcan endpoint is vulnerable to... Critical Unreviewed

CVE-2025-51745 was published Nov 25, 2025

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /material... Critical Unreviewed

CVE-2025-51742 was published Nov 25, 2025

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /user/addUser endpoint is vulnerable to... Critical Unreviewed

CVE-2025-51744 was published Nov 25, 2025

An issue was discovered in jishenghua JSH_ERP 2.3.1. The /materialCategory/addMaterialCategory... Critical Unreviewed

CVE-2025-51743 was published Nov 25, 2025

An issue in the cms_rest.php component of SIGB PMB v8.0.1.14 allows attackers to execute... Critical Unreviewed

CVE-2025-61168 was published Nov 25, 2025

Deserialization of Untrusted Data vulnerability in Icegram Email Subscribers & Newsletters email... High Unreviewed

CVE-2025-66055 was published Nov 21, 2025

Deserialization of Untrusted Data vulnerability in Cozmoslabs WP Webhooks wp-webhooks allows... Moderate Unreviewed

CVE-2025-66073 was published Nov 21, 2025

IBM webMethods Integration 10.11 through 10.11_Core_Fix22, 10.15 through 10.15_Core_Fix22, and 11... High Unreviewed

CVE-2025-36072 was published Nov 21, 2025

Microsoft SharePoint Online Elevation of Privilege Vulnerability Critical Unreviewed

CVE-2025-59245 was published Nov 21, 2025

The WP Import – Ultimate CSV XML Importer for WordPress plugin for WordPress is vulnerable to PHP... High Unreviewed

CVE-2025-13145 was published Nov 19, 2025

SolarWinds Web Help Desk was found to be susceptible to a Java Deserialization Remote Code... Critical Unreviewed

CVE-2024-28988 was published Nov 15, 2025

The AI Engine plugin for WordPress is vulnerable to PHP Object Injection via PHAR Deserialization... High Unreviewed

CVE-2025-12844 was published Nov 13, 2025

The N-central Software Probe < 2025.4 is vulnerable to Remote Code Execution via deserialization Critical Unreviewed

CVE-2025-11367 was published Nov 12, 2025

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed

CVE-2025-62204 was published Nov 11, 2025

ktg-mes before commit a484f96 (2025-07-03) has a fastjson deserialization vulnerability. This is... Moderate Unreviewed

CVE-2025-63617 was published Nov 10, 2025

The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is... High Unreviewed

CVE-2025-12099 was published Nov 8, 2025

Deserialization of Untrusted Data vulnerability in uxper Togo togo.This issue affects Togo: from... High Unreviewed

CVE-2025-62035 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in WP User Manager WP User Manager wp-user... Critical Unreviewed

CVE-2025-60245 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in Cozmoslabs TranslatePress translatepress... High Unreviewed

CVE-2025-58592 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in NooTheme Yogi - Health Beauty & Yoga noo-yogi... High Unreviewed

CVE-2025-54719 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows... High Unreviewed

CVE-2025-58619 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in NooTheme WeMusic noo-wemusic allows Object... Critical Unreviewed

CVE-2025-53586 was published Nov 6, 2025

Previous1…56 Next

Previous 1 2 3 4 5 … 55 56 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,391 advisories