GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,665
Composer 4,466
Erlang 33
GitHub Actions 22
Go 2,166
Maven 5,398
npm 3,829
NuGet 696
pip 3,507
Pub 12
RubyGems 909
Rust 904
Swift 38

Unreviewed advisories

All unreviewed 247,749

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

247,749 advisories

Filter by severity

Sort by

Least recently updated

SQL Injection Vulnerability in tanujpatra228 Tution Management System (TMS) via the email... Critical Unreviewed

CVE-2022-45677 was published Feb 21, 2023

The Limit Bio WordPress plugin through 1.0 does not sanitise and escape a parameter before... High Unreviewed

CVE-2024-13884 was published Mar 13, 2025

The WP Click Info WordPress plugin through 2.7.4 does not sanitise and escape a parameter before... High Unreviewed

CVE-2025-1401 was published Mar 13, 2025

Xerox Desktop Print Experience application contains a Local Privilege Escalation (LPE)... Moderate Unreviewed

CVE-2025-1984 was published Mar 12, 2025

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_blend. Moderate Unreviewed

CVE-2024-57720 was published Jan 23, 2025

A type confusion issue was addressed with improved memory handling. This issue is fixed in macOS... Moderate Unreviewed

CVE-2024-54507 was published Jan 28, 2025

In Thermo Fisher Scientific Xcalibur before 4.7 SP1 and Thermo Foundation Instrument Control... High Unreviewed

CVE-2024-55957 was published Jan 22, 2025

A logic vulnerability in the the mobile application (com.transsion.applock) can lead to bypassing... Critical Unreviewed

CVE-2024-12603 was published Dec 13, 2024

The libcurl CURLOPT_SSL_VERIFYPEER option was disabled on a subset of requests made by Nest... Moderate Unreviewed

CVE-2024-32928 was published Aug 19, 2024

An issue was discovered in vesoft NebulaGraph through 3.8.0. It allows shell command injection. Critical Unreviewed

CVE-2024-47219 was published Sep 22, 2024

vmir e8117 was discovered to contain a heap buffer overflow via the wasm_call function at /src... High Unreviewed

CVE-2024-35422 was published Nov 9, 2024

A User enumeration vulnerability in AquilaCMS 1.409.20 and prior allows unauthenticated attackers... Moderate Unreviewed

CVE-2024-48572 was published Oct 30, 2024

The پلاگین پرداخت دلخواه WordPress plugin through 2.9.8 does not have CSRF check in place when... Moderate Unreviewed

CVE-2024-6230 was published Jul 30, 2024

Cross Site Scripting vulnerability in /edit-client-details.php of phpgurukul Client Management... Moderate Unreviewed

CVE-2024-30989 was published Apr 17, 2024

An issue in CSS Exfil Protection v.1.1.0 allows a remote attacker to obtain sensitive information... Moderate Unreviewed

CVE-2024-33436 was published Apr 30, 2024

Broken Access Control vulnerability in Samuel Marshall JCH Optimize.This issue affects JCH... Moderate Unreviewed

CVE-2024-30481 was published Jun 9, 2024

This High severity RCE (Remote Code Execution) vulnerability was introduced in version 5.2 of... High Unreviewed

CVE-2024-21683 was published May 22, 2024

Improper Handling of Exceptional Conditions vulnerability in Daurnimator HTTP Library for Lua... High Unreviewed

CVE-2023-4540 was published Sep 5, 2023

The All in One SEO WordPress plugin before 4.6.1.1 does not validate and escape some of its Post... Moderate Unreviewed

CVE-2024-3368 was published May 20, 2024

Improper Access Control in the AMD SPI protection feature may allow a user with Ring0 (kernel... Moderate Unreviewed

CVE-2023-20579 was published Feb 13, 2024

This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 16.7.9 and... Moderate Unreviewed

CVE-2024-40793 was published Jul 30, 2024

Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from... Critical Unreviewed

CVE-2024-30628 was published Mar 29, 2024

The API used to interact with documents in the application contains two endpoints with a flaw... High Unreviewed

CVE-2024-54449 was published Mar 14, 2025

In Tenda AC9 v1.0 V15.03.05.14_multi, the mac parameter of /goform/AdvSetMacMtuWan has a stack... Unknown Unreviewed

CVE-2025-29386 was published Mar 14, 2025

Saved search functionality contains a blind SQL injection that can be exploited by authenticated... High Unreviewed

CVE-2024-54447 was published Mar 14, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

247,749 advisories