GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,908
Erlang
39
GitHub Actions
38
Go
2,568
Maven
5,000+
npm
4,240
NuGet
754
pip
4,004
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,595 advisories
Filter by severity
Reolink Video Doorbell WiFi DB_566128M5MP_W performs insufficient validation of firmware update...
Moderate
Unreviewed
CVE-2025-60855
was published
Oct 16, 2025
An arbitrary file upload vulnerability in SageMath, Inc CoCalc before commit 0d2ff58 allows...
Moderate
Unreviewed
CVE-2025-61514
was published
Oct 16, 2025
Command injection in some Zoom Clients for Windows may allow an authenticated user to conduct a...
Moderate
Unreviewed
CVE-2025-58132
was published
Oct 15, 2025
A vulnerability in the web-based management interface of network access point configuration...
High
Unreviewed
CVE-2025-37146
was published
Oct 14, 2025
An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller...
High
Unreviewed
CVE-2025-37133
was published
Oct 14, 2025
An authenticated command injection vulnerability exists in the command line interface binary of...
Moderate
Unreviewed
CVE-2025-37138
was published
Oct 14, 2025
An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller...
High
Unreviewed
CVE-2025-37134
was published
Oct 14, 2025
A vulnerability was detected in D-Link DAP-2695 2.00RC131. This affects the function...
Moderate
Unreviewed
CVE-2025-11665
was published
Oct 13, 2025
An arbitrary file upload vulnerability in MCMS v6.0.1 allows attackers to execute arbitrary code...
Moderate
Unreviewed
CVE-2025-60838
was published
Oct 10, 2025
An arbitrary file upload vulnerability exists in JeeWMS 20250820, which is caused by the lack of...
Moderate
Unreviewed
CVE-2025-60268
was published
Oct 10, 2025
An issue WebKul Bagisto v.2.3.6 allows a remote attacker to execute arbitrary code via the Cart...
Moderate
Unreviewed
CVE-2025-56426
was published
Oct 9, 2025
A vulnerability was detected in Tenda AC7 15.03.06.44. This vulnerability affects unknown code of...
Moderate
Unreviewed
CVE-2025-11523
was published
Oct 9, 2025
A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected...
Moderate
Unreviewed
CVE-2025-11490
was published
Oct 8, 2025
A vulnerability was found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The impacted element...
Moderate
Unreviewed
CVE-2025-11491
was published
Oct 8, 2025
A weakness has been identified in D-Link DI-7001 MINI 24.04.18B1. Impacted is an unknown function...
Moderate
Unreviewed
CVE-2025-11407
was published
Oct 7, 2025
Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability...
Critical
Unreviewed
CVE-2025-59740
was published
Oct 2, 2025
Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability...
Critical
Unreviewed
CVE-2025-59735
was published
Oct 2, 2025
Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability...
Critical
Unreviewed
CVE-2025-59736
was published
Oct 2, 2025
Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability...
Critical
Unreviewed
CVE-2025-59741
was published
Oct 2, 2025
Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability...
Critical
Unreviewed
CVE-2025-59738
was published
Oct 2, 2025
Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability...
Critical
Unreviewed
CVE-2025-59737
was published
Oct 2, 2025
Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability...
Critical
Unreviewed
CVE-2025-59739
was published
Oct 2, 2025
ProTip!
Advisories are also available from the
GraphQL API