GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,700
Composer 4,471
Erlang 33
GitHub Actions 24
Go 2,174
Maven 5,403
npm 3,835
NuGet 696
pip 3,511
Pub 12
RubyGems 910
Rust 908
Swift 38

Unreviewed advisories

All unreviewed 248,231

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,673 advisories

Filter by severity

Sort by

Least recently updated

Tenda AC7 V1.0 V15.03.06.44 found a buffer overflow caused by the timeZone parameter in the... Critical Unreviewed

CVE-2025-29137 was published Mar 19, 2025

CM Soluces Informatica Ltda Auto Atendimento 1.x.x was discovered to contain a SQL injection via... Critical Unreviewed

CVE-2025-26163 was published Mar 14, 2025

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the... Critical Unreviewed

CVE-2025-25568 was published Mar 12, 2025

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in Internat.c via the... Critical Unreviewed

CVE-2025-25567 was published Mar 12, 2025

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert... Critical Unreviewed

CVE-2025-25565 was published Mar 12, 2025

An issue in the storage of NFC card data in Dorset DG 201 Digital Lock H5_433WBSK_v2.2_220605... Critical Unreviewed

CVE-2025-25650 was published Mar 17, 2025

An issue in trojan v.2.0.0 through v.2.15.3 allows a remote attacker to escalate privileges via... Critical Unreviewed

CVE-2024-55215 was published Feb 8, 2025

In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and... Critical Unreviewed

CVE-2024-51298 was published Oct 30, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in WEN Solutions WP Child Theme... Critical Unreviewed

CVE-2023-47873 was published Mar 26, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Terry Lin WP Githuber MD.This... Critical Unreviewed

CVE-2023-47846 was published Mar 26, 2024

In Ampere AltraMax and Ampere Altra before 2.10c, improper access controls allows the OS to... Critical Unreviewed

CVE-2022-46892 was published Feb 15, 2023

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sequoia... Critical Unreviewed

CVE-2025-24102 was published Jan 28, 2025

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in... Critical Unreviewed

CVE-2025-24109 was published Jan 28, 2025

WeGIA < 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application... Critical Unreviewed

CVE-2024-57032 was published Jan 17, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Artbees JupiterX Core.This issue... Critical Unreviewed

CVE-2023-38388 was published Mar 26, 2024

Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows attacker to escalate privileges... Critical Unreviewed

CVE-2021-32142 was published Feb 17, 2023

cgi.c in weborf .0.17, 0.18, 0.19, and 0.20 (before 1.0) lacks '\0' termination of the path for... Critical Unreviewed

CVE-2023-46586 was published Oct 9, 2024

SQL Injection vulnerability in Projectworlds Online Doctor Appointment Booking System, allows... Critical Unreviewed

CVE-2020-29168 was published Feb 17, 2023

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via... Critical Unreviewed

CVE-2024-13442 was published Mar 19, 2025

The File Away plugin for WordPress is vulnerable to arbitrary file uploads due to a missing... Critical Unreviewed

CVE-2025-2512 was published Mar 19, 2025

The MinimogWP – The High Converting eCommerce WordPress Theme theme for WordPress is vulnerable... Critical Unreviewed

CVE-2024-13790 was published Mar 19, 2025

The CozyStay and TinySalt plugins for WordPress are vulnerable to PHP Object Injection in all... Critical Unreviewed

CVE-2024-13410 was published Mar 19, 2025

The Altair theme for WordPress is vulnerable to unauthorized modification of data that can lead... Critical Unreviewed

CVE-2024-12922 was published Mar 19, 2025

Off-by-one error vulnerability in the transmission component in Synology Replication Service... Critical Unreviewed

CVE-2024-10442 was published Mar 19, 2025

A vulnerability regarding out-of-bounds read is found in the video interface. This allows remote... Critical Unreviewed

CVE-2024-11131 was published Mar 19, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,673 advisories