GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,695
Composer 4,471
Erlang 33
GitHub Actions 24
Go 2,173
Maven 5,399
npm 3,835
NuGet 696
pip 3,511
Pub 12
RubyGems 910
Rust 908
Swift 38

Unreviewed advisories

All unreviewed 248,220

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,667 advisories

Filter by severity

Sort by

Least recently updated

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formWifiWpsOOB function. Critical Unreviewed

CVE-2025-29030 was published Mar 14, 2025

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the fromAddressNat function. Critical Unreviewed

CVE-2025-29031 was published Mar 14, 2025

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formSetSpeedWan function. Critical Unreviewed

CVE-2025-29029 was published Mar 14, 2025

The Realteo - Real Estate Plugin by Purethemes plugin for WordPress, used by the Findeo Theme, is... Critical Unreviewed

CVE-2025-2232 was published Mar 14, 2025

The Civi - Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable... Critical Unreviewed

CVE-2024-13771 was published Mar 14, 2025

The CiyaShop - Multipurpose WooCommerce Theme theme for WordPress is vulnerable to PHP Object... Critical Unreviewed

CVE-2024-13824 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-11284 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to,... Critical Unreviewed

CVE-2024-11286 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-11285 was published Mar 14, 2025

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1... Critical Unreviewed

CVE-2025-2080 was published Mar 13, 2025

During login to the web server in "Sante PACS Server.exe", OpenSSL function EVP_DecryptUpdate is... Critical Unreviewed

CVE-2025-2263 was published Mar 13, 2025

CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could... Critical Unreviewed

CVE-2025-1960 was published Mar 12, 2025

A command injection vulnerability exists in the /check_image_and_trigger_recovery API endpoint of... Critical Unreviewed

CVE-2024-13871 was published Mar 12, 2025

Bitdefender Box, versions 1.3.11.490 through 1.3.11.505, uses the insecure HTTP protocol to... Critical Unreviewed

CVE-2024-13872 was published Mar 12, 2025

The Workreap plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-13446 was published Mar 12, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Theme Egg ThemeEgg ToolKit... Critical Unreviewed

CVE-2025-28915 was published Mar 11, 2025

An issue was discovered in Percona PMM Server (OVA) before 3.0.0-1.ova. The default service... Critical Unreviewed

CVE-2025-26701 was published Mar 11, 2025

AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication... Critical Unreviewed

CVE-2024-54085 was published Mar 11, 2025

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9),... Critical Unreviewed

CVE-2025-27494 was published Mar 11, 2025

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9),... Critical Unreviewed

CVE-2025-27493 was published Mar 11, 2025

A vulnerability has been identified in SINAMICS S200 (All versions with serial number beginning... Critical Unreviewed

CVE-2024-56336 was published Mar 11, 2025

The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2025-1661 was published Mar 11, 2025

VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of... Critical Unreviewed

CVE-2025-25940 was published Mar 10, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Critical Unreviewed

CVE-2025-26916 was published Mar 10, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in NotFound Fresh... Critical Unreviewed

CVE-2025-26936 was published Mar 10, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,667 advisories