GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,350
Composer 4,652
Erlang 34
GitHub Actions 26
Go 2,257
Maven 5,512
npm 3,909
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,100

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

253,100 advisories

Filter by severity

Sort by

Least recently updated

BYD QIN PLUS DM-i Dilink OS v3.0_13.1.7.2204050.1 to v3.0_13.1.7.2312290.1_0 was discovered to... High Unreviewed

CVE-2025-28169 was published Apr 23, 2025

The-wound WordPress theme through 0.0.1 does not validate some parameters before using them to... High Unreviewed

CVE-2025-2558 was published Apr 24, 2025

The Category Posts Widget WordPress plugin before 4.9.20 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2025-1453 was published Apr 24, 2025

A vulnerability was found in PHPGurukul Men Salon Management System 1.0 and classified as... Moderate Unreviewed

CVE-2025-3690 was published Apr 16, 2025

It technically possible for a user to upload a file to a conversation despite the file upload... Moderate Unreviewed

CVE-2025-3518 was published Apr 22, 2025

A vulnerability was found in Xianqi Kindergarten Management System 2.0 Bulid 20190808. It has... Moderate Unreviewed

CVE-2025-3684 was published Apr 16, 2025

SourceCodester Sentiment Based Movie Rating System 1.0 is vulnerable to SQL Injection in /msrps... Critical Unreviewed

CVE-2024-52675 was published Nov 19, 2024

In camera driver, there is a possible memory corruption due to improper locking. This could lead... Moderate Unreviewed

CVE-2022-39131 was published Dec 6, 2022

Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote... High Unreviewed

CVE-2022-43542 was published Dec 12, 2022

A vulnerability in the Aruba EdgeConnect Enterprise web management interface allows remote... High Unreviewed

CVE-2022-44533 was published Dec 12, 2022

In ccci, there is a possible out of bounds write due to improper input validation. This could... Moderate Unreviewed

CVE-2022-32634 was published Dec 5, 2022

Telepad allows remote unauthenticated users to send instructions to the server to execute... Critical Unreviewed

CVE-2022-45477 was published Dec 5, 2022

An issue in the /api/audits component of Pwndoc v0.5.3 allows attackers to escalate privileges... High Unreviewed

CVE-2022-45771 was published Dec 5, 2022

The default configuration of Lazy Mouse does not require a password, allowing remote... Critical Unreviewed

CVE-2022-45481 was published Dec 5, 2022

A privilege escalation vulnerability is identified in Ivanti EPM (LANDesk Management Suite) that... Critical Unreviewed

CVE-2022-27773 was published Dec 6, 2022

In sensor driver, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed

CVE-2022-39106 was published Dec 6, 2022

In face detect driver, there is a possible out of bounds write due to a missing bounds check.... Moderate Unreviewed

CVE-2022-39129 was published Dec 6, 2022

Cross-site scripting vulnerability in WordPress versions prior to 6.0.3 allows a remote... Moderate Unreviewed

CVE-2022-43497 was published Dec 5, 2022

In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could... Moderate Unreviewed

CVE-2022-32631 was published Dec 5, 2022

In face detect driver, there is a possible out of bounds write due to a missing bounds check.... Moderate Unreviewed

CVE-2022-39130 was published Dec 6, 2022

Buffer overflow in firmware lewei_cam binary version 2.0.10 in Force 1 Discovery Wifi U818A HD+... Critical Unreviewed

CVE-2022-40918 was published Dec 6, 2022

D-Link DVG-G5402SP GE_1.03 was discovered to contain a command injection vulnerability via the... Critical Unreviewed

CVE-2022-44928 was published Dec 2, 2022

A vulnerability has been discovered in the code-projects Online Class and Exam Scheduling System... Unknown Unreviewed

CVE-2025-29568 was published Apr 24, 2025

An issue in LTB Self Service Password before v.1.5.4 allows a remote attacker to execute... Critical Unreviewed

CVE-2023-49032 was published Dec 21, 2023

IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileged user to cause a denial... Moderate Unreviewed

CVE-2022-43880 was published Mar 3, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

253,100 advisories