Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

121,235 advisories

Loading
A vulnerability was found in TOTOLINK A3002RU 2.1.1-B20230720.1011. It has been classified as... Moderate Unreviewed
CVE-2025-5506 was published Jun 3, 2025
A vulnerability has been found in TOTOLINK X2000R 1.0.0-B20230726.1108 and classified as critical... Moderate Unreviewed
CVE-2025-5504 was published Jun 3, 2025
A vulnerability was found in TOTOLINK A3002RU 2.1.1-B20230720.1011 and classified as problematic.... Moderate Unreviewed
CVE-2025-5505 was published Jun 3, 2025
A vulnerability was found in slackero phpwcms up to 1.9.45/1.10.8. It has been declared as... Moderate Unreviewed
CVE-2025-5497 was published Jun 3, 2025
A vulnerability classified as problematic was found in Open5GS up to 2.7.3. Affected by this... Moderate Unreviewed
CVE-2025-5501 was published Jun 3, 2025
A vulnerability was found in Netgear WNR614 1.1.0.28_1.0.1WW. It has been classified as critical.... Moderate Unreviewed
CVE-2025-5495 was published Jun 3, 2025
A vulnerability classified as critical has been found in slackero phpwcms up to 1.9.45/1.10.8.... Moderate Unreviewed
CVE-2025-5499 was published Jun 3, 2025
A vulnerability was found in slackero phpwcms up to 1.9.45/1.10.8. It has been rated as critical.... Moderate Unreviewed
CVE-2025-5498 was published Jun 3, 2025
A vulnerability, which was classified as critical, has been found in TOTOLINK X15 1.0.0-B20230714... Moderate Unreviewed
CVE-2025-5502 was published Jun 3, 2025
IBM Application Gateway 19.12 through 24.09 could allow a local privileged user to perform... Moderate Unreviewed
CVE-2024-45655 was published Jun 3, 2025
The Profile Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2025-4671 was published Jun 3, 2025
A vulnerability was found in Baison Channel Middleware Product 2.0.1 and classified as critical.... Moderate Unreviewed
CVE-2025-5493 was published Jun 3, 2025
The Music Player for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2025-5340 was published Jun 3, 2025
A vulnerability has been found in D-Link DI-500WF-WT up to 20250511 and classified as critical.... Moderate Unreviewed
CVE-2025-5492 was published Jun 3, 2025
The Popup Maker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-4205 was published Jun 3, 2025
The Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerce plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2025-4420 was published Jun 3, 2025
The Bit File Manager – 100% Free & Open Source File Manager and Code Editor for WordPress plugin... Moderate Unreviewed
CVE-2025-1725 was published Jun 3, 2025
The WP Plugin Info Card plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2025-5116 was published Jun 3, 2025
The Ultimate Gift Cards for WooCommerce plugin for WordPress is vulnerable to boolean-based SQL... Moderate Unreviewed
CVE-2025-5103 was published Jun 3, 2025
Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in... Moderate Unreviewed
CVE-2025-41428 was published Jun 3, 2025
In engineermode service, there is a possible command injection due to improper input validation.... Moderate Unreviewed
CVE-2025-31710 was published Jun 3, 2025
In cplog service, there is a possible system crash due to null pointer dereference. This could... Moderate Unreviewed
CVE-2025-31711 was published Jun 3, 2025
In cplog service, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2025-31712 was published Jun 3, 2025
Memory corruption while processing IOCTL command to handle buffers associated with a session. Moderate Unreviewed
CVE-2024-53015 was published Jun 3, 2025
Memory corruption may occur while processing voice call registration with user. Moderate Unreviewed
CVE-2024-53013 was published Jun 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database