GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,563
Composer 4,458
Erlang 33
GitHub Actions 22
Go 2,157
Maven 5,338
npm 3,819
NuGet 695
pip 3,498
Pub 12
RubyGems 903
Rust 903
Swift 38

Unreviewed advisories

All unreviewed 247,232

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,615 advisories

Filter by severity

Sort by

Least recently updated

Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows... Critical Unreviewed

CVE-2024-50704 was published Mar 4, 2025

Improper verification of the digital signature in ksojscore.dll in Kingsoft WPS Office in... Critical Unreviewed

CVE-2024-11957 was published Mar 4, 2025

Unauthenticated SQL injection vulnerability in Uniguest Tripleplay before 24.2.1 allows remote... Critical Unreviewed

CVE-2024-50706 was published Mar 4, 2025

Under certain circumstances, a user opt-in setting that Focus should require authentication... Critical Unreviewed

CVE-2025-1941 was published Mar 4, 2025

An inconsistent comparator in xslt/txNodeSorter could have resulted in potentially exploitable... Critical Unreviewed

CVE-2025-1932 was published Mar 4, 2025

VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that... Critical Unreviewed

CVE-2025-22224 was published Mar 4, 2025

The Newscrunch theme for WordPress is vulnerable to arbitrary file uploads due to a missing... Critical Unreviewed

CVE-2025-1307 was published Mar 4, 2025

The Donations Widget plugin for WordPress is vulnerable to PHP Object Injection in all versions... Critical Unreviewed

CVE-2025-0912 was published Mar 4, 2025

Cross Site Request Forgery vulnerability in sell done storefront v.1.0 allows a remote attacker... Critical Unreviewed

CVE-2025-26206 was published Mar 3, 2025

Missing Authorization vulnerability in NotFound Residential Address Detection allows Privilege... Critical Unreviewed

CVE-2025-27270 was published Mar 3, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-27268 was published Mar 3, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in NotFound Ark Theme... Critical Unreviewed

CVE-2025-26970 was published Mar 3, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-26988 was published Mar 3, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-26535 was published Mar 3, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-25150 was published Mar 3, 2025

SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed

CVE-2025-1872 was published Mar 3, 2025

SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed

CVE-2025-1874 was published Mar 3, 2025

SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed

CVE-2025-1871 was published Mar 3, 2025

SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed

CVE-2025-1869 was published Mar 3, 2025

SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed

CVE-2025-1870 was published Mar 3, 2025

SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed

CVE-2025-1873 was published Mar 3, 2025

SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed

CVE-2025-1875 was published Mar 3, 2025

Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in... Critical Unreviewed

CVE-2025-1867 was published Mar 3, 2025

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat... Critical Unreviewed

CVE-2025-1866 was published Mar 3, 2025

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in... Critical Unreviewed

CVE-2025-1864 was published Mar 3, 2025

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,615 advisories