GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,811
Composer 4,472
Erlang 33
GitHub Actions 24
Go 2,183
Maven 5,419
npm 3,841
NuGet 696
pip 3,600
Pub 12
RubyGems 911
Rust 910
Swift 38

Unreviewed advisories

All unreviewed 248,570

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,708 advisories

Filter by severity

Sort by

Least recently updated

SQL injection vulnerability in the Innovación y Cualificación local administration plugin ajax... Critical Unreviewed

CVE-2025-2199 was published Mar 17, 2025

QL injection vulnerability in the IcProgreso Innovación y Cualificación plugin. This... Critical Unreviewed

CVE-2025-2200 was published Mar 17, 2025

The U-Office Force from e-Excellence has an Improper Authentication vulnerability, allowing... Critical Unreviewed

CVE-2025-2395 was published Mar 17, 2025

A vulnerability, which was classified as very critical, was found in IROAD Dash Cam X5 and Dash... Critical Unreviewed

CVE-2025-2345 was published Mar 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-26875 was published Mar 16, 2025

The Traveler theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and... Critical Unreviewed

CVE-2025-1771 was published Mar 15, 2025

In Tenda AC9 v1.0 V15.03.05.14_multi, the mac parameter of /goform/AdvSetMacMtuWan has a stack... Critical Unreviewed

CVE-2025-29386 was published Mar 14, 2025

In Tenda AC9 v1.0 V15.03.05.14_multi, the wanMTU parameter of /goform/AdvSetMacMtuWan has a stack... Critical Unreviewed

CVE-2025-29384 was published Mar 14, 2025

In Tenda AC9 v1.0 V15.03.05.14_multi, the cloneType parameter of /goform/AdvSetMacMtuWan has a... Critical Unreviewed

CVE-2025-29385 was published Mar 14, 2025

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formSetSpeedWan function. Critical Unreviewed

CVE-2025-29029 was published Mar 14, 2025

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the formWifiWpsOOB function. Critical Unreviewed

CVE-2025-29030 was published Mar 14, 2025

Tenda AC6 v15.03.05.16 was discovered to contain a buffer overflow via the fromAddressNat function. Critical Unreviewed

CVE-2025-29031 was published Mar 14, 2025

The product can be used to distribute malicious code using SDD Device Drivers due to missing... Critical Unreviewed

CVE-2025-27593 was published Mar 14, 2025

The device uses a weak hashing alghorithm to create the password hash. Hence, a matching password... Critical Unreviewed

CVE-2025-27595 was published Mar 14, 2025

The Realteo - Real Estate Plugin by Purethemes plugin for WordPress, used by the Findeo Theme, is... Critical Unreviewed

CVE-2025-2232 was published Mar 14, 2025

The Civi - Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable... Critical Unreviewed

CVE-2024-13771 was published Mar 14, 2025

The CiyaShop - Multipurpose WooCommerce Theme theme for WordPress is vulnerable to PHP Object... Critical Unreviewed

CVE-2024-13824 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-11285 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-11284 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to,... Critical Unreviewed

CVE-2024-11286 was published Mar 14, 2025

CM Soluces Informatica Ltda Auto Atendimento 1.x.x was discovered to contain a SQL injection via... Critical Unreviewed

CVE-2025-26163 was published Mar 14, 2025

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1... Critical Unreviewed

CVE-2025-2080 was published Mar 13, 2025

During login to the web server in "Sante PACS Server.exe", OpenSSL function EVP_DecryptUpdate is... Critical Unreviewed

CVE-2025-2263 was published Mar 13, 2025

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert... Critical Unreviewed

CVE-2025-25565 was published Mar 12, 2025

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in Internat.c via the... Critical Unreviewed

CVE-2025-25567 was published Mar 12, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,708 advisories