GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,413
Composer 5,127
Erlang 40
GitHub Actions 38
Go 2,822
Maven 6,205
npm 4,448
NuGet 774
pip 4,218
Pub 12
RubyGems 970
Rust 1,089
Swift 47

Unreviewed advisories

All unreviewed 285,604

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

24,562 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Incorrect Privilege Assignment vulnerability in InspiryThemes RealHomes allows Privilege... Critical Unreviewed

CVE-2024-32444 was published Jan 15, 2026

FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE(). Critical Unreviewed

CVE-2025-70968 was published Jan 14, 2026

The vulnerability exists in BLUVOYIX due to improper authentication in the BLUVOYIX admin APIs.... Critical Unreviewed

CVE-2026-22238 was published Jan 14, 2026

The vulnerability exists in BLUVOYIX due to an improper password storage implementation and... Critical Unreviewed

CVE-2026-22240 was published Jan 14, 2026

The vulnerability exists in BLUVOYIX due to improper authentication in the BLUVOYIX backend APIs.... Critical Unreviewed

CVE-2026-22236 was published Jan 14, 2026

The vulnerability exists in BLUVOYIX due to the exposure of sensitive internal API documentation.... Critical Unreviewed

CVE-2026-22237 was published Jan 14, 2026

The vulnerability exists in BLUVOYIX due to design flaws in the email sending API. An... Critical Unreviewed

CVE-2026-22239 was published Jan 14, 2026

Incorrect Privilege Assignment vulnerability in Modular DS allows Privilege Escalation.This issue... Critical Unreviewed

CVE-2026-23550 was published Jan 14, 2026

The News and Blog Designer Bundle plugin for WordPress is vulnerable to Local File Inclusion in... Critical Unreviewed

CVE-2025-14502 was published Jan 14, 2026

The Integration Opvius AI for WooCommerce plugin for WordPress is vulnerable to Path Traversal in... Critical Unreviewed

CVE-2025-14301 was published Jan 14, 2026

Webgrind 1.1 contains a remote command execution vulnerability that allows unauthenticated... Critical Unreviewed

CVE-2023-54339 was published Jan 14, 2026

Inbit Messenger 4.6.0 - 4.9.0 contains a remote command execution vulnerability that allows... Critical Unreviewed

CVE-2023-54329 was published Jan 14, 2026

eXtplorer 2.1.14 contains an authentication bypass vulnerability that allows attackers to login... Critical Unreviewed

CVE-2023-54335 was published Jan 14, 2026

Inbit Messenger versions 4.6.0 to 4.9.0 contain a remote stack-based buffer overflow... Critical Unreviewed

CVE-2023-54330 was published Jan 14, 2026

ImpressCMS 1.4.4 contains a file upload vulnerability with weak extension sanitization that... Critical Unreviewed

CVE-2022-50912 was published Jan 14, 2026

Tdarr 2.00.15 contains an unauthenticated remote code execution vulnerability in its Help... Critical Unreviewed

CVE-2022-50919 was published Jan 14, 2026

VIAVIWEB Wallpaper Admin 1.0 contains an unauthenticated remote code execution vulnerability in... Critical Unreviewed

CVE-2022-50893 was published Jan 14, 2026

Covenant 0.1.3 - 0.5 contains a remote code execution vulnerability that allows attackers to... Critical Unreviewed

CVE-2020-36911 was published Jan 14, 2026

An improper neutralization of special elements used in an os command ('os command injection')... Critical Unreviewed

CVE-2025-64155 was published Jan 13, 2026

An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet... Critical Unreviewed

CVE-2025-47855 was published Jan 13, 2026

Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from... Critical Unreviewed

CVE-2025-25176 was published Jan 13, 2026

phpgurukul News Portal Project V4.1 has File Upload Vulnerability via upload.php, which enables... Critical Unreviewed

CVE-2025-69992 was published Jan 13, 2026

phpgurukul News Portal Project V4.1 is vulnerable to SQL Injection in check_availablity.php. Critical Unreviewed

CVE-2025-69991 was published Jan 13, 2026

phpgurukul News Portal Project V4.1 has an Arbitrary File Deletion Vulnerability in remove_file... Critical Unreviewed

CVE-2025-69990 was published Jan 13, 2026

An arbitrary file upload vulnerability in the /utils/uploadFile component of Hubert Imoveis e... Critical Unreviewed

CVE-2025-65783 was published Jan 13, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

24,562 advisories