Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

572 advisories

Loading
A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client on... Moderate Unreviewed
CVE-2025-1549 was published Oct 29, 2025
A security vulnerability has been detected in D-Link DAP-2695 2.00RC13. The impacted element is... Moderate Unreviewed
CVE-2025-12296 was published Oct 27, 2025
An issue was discovered in BAE SOCET GXP before 4.6.0.2. An attacker with the ability to interact... Moderate Unreviewed
CVE-2025-54964 was published Oct 23, 2025
Reolink desktop application 8.18.12 contains a command injection vulnerability in its scheduled... Moderate Unreviewed
CVE-2025-56799 was published Oct 21, 2025
Bambu Studio 2.1.1.52 and earlier is affected by a vulnerability that allows arbitrary code... Moderate Unreviewed
CVE-2025-57521 was published Oct 21, 2025
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Moderate Unreviewed
CVE-2025-62696 was published Oct 21, 2025
An arbitrary file upload vulnerability in SageMath, Inc CoCalc before commit 0d2ff58 allows... Moderate Unreviewed
CVE-2025-61514 was published Oct 16, 2025
Reolink Video Doorbell WiFi DB_566128M5MP_W performs insufficient validation of firmware update... Moderate Unreviewed
CVE-2025-60855 was published Oct 16, 2025
Command injection in some Zoom Clients for Windows may allow an authenticated user to conduct a... Moderate Unreviewed
CVE-2025-58132 was published Oct 15, 2025
An authenticated command injection vulnerability exists in the command line interface binary of... Moderate Unreviewed
CVE-2025-37138 was published Oct 14, 2025
A vulnerability was detected in D-Link DAP-2695 2.00RC131. This affects the function... Moderate Unreviewed
CVE-2025-11665 was published Oct 13, 2025
An arbitrary file upload vulnerability in MCMS v6.0.1 allows attackers to execute arbitrary code... Moderate Unreviewed
CVE-2025-60838 was published Oct 10, 2025
An arbitrary file upload vulnerability exists in JeeWMS 20250820, which is caused by the lack of... Moderate Unreviewed
CVE-2025-60268 was published Oct 10, 2025
M365 Copilot Spoofing Vulnerability Moderate Unreviewed
CVE-2025-59252 was published Oct 9, 2025
Copilot Spoofing Vulnerability Moderate Unreviewed
CVE-2025-59272 was published Oct 9, 2025
Copilot Spoofing Vulnerability Moderate Unreviewed
CVE-2025-59286 was published Oct 9, 2025
An issue WebKul Bagisto v.2.3.6 allows a remote attacker to execute arbitrary code via the Cart... Moderate Unreviewed
CVE-2025-56426 was published Oct 9, 2025
A vulnerability was detected in Tenda AC7 15.03.06.44. This vulnerability affects unknown code of... Moderate Unreviewed
CVE-2025-11523 was published Oct 9, 2025
A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected... Moderate Unreviewed
CVE-2025-11490 was published Oct 8, 2025
A vulnerability was found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The impacted element... Moderate Unreviewed
CVE-2025-11491 was published Oct 8, 2025
A weakness has been identified in D-Link DI-7001 MINI 24.04.18B1. Impacted is an unknown function... Moderate Unreviewed
CVE-2025-11407 was published Oct 7, 2025
A weakness has been identified in D-Link DIR-816L 206b01. Affected by this issue is the function... Moderate Unreviewed
CVE-2025-9727 was published Oct 1, 2025
A security flaw has been discovered in Ruijie NBR2100G-E up to 20250919. Affected by this issue... Moderate Unreviewed
CVE-2025-11141 was published Sep 29, 2025
A vulnerability was found in mirweiye wenkucms up to 3.4. This impacts the function createPathOne... Moderate Unreviewed
CVE-2025-11138 was published Sep 29, 2025
An issue was discovered in DIR-823 firmware 20250416. There is an RCE vulnerability in the... Moderate Unreviewed
CVE-2025-55848 was published Sep 26, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database