Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,471
Erlang
33
GitHub Actions
24
Go
2,180
Maven
5,000+
npm
3,836
NuGet
696
pip
3,555
Pub
12
RubyGems
910
Rust
908
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

116,485 advisories

Loading
A vulnerability, which was classified as critical, has been found in Audi UTR Dashcam 2.0.... Moderate Unreviewed
CVE-2025-2557 was published Mar 20, 2025
DESCOR INFOCAD 3.5.1 and before and fixed in v.3.5.2.0 allows SQL Injection. Moderate Unreviewed
CVE-2025-26852 was published Mar 20, 2025
DESCOR INFOCAD 3.5.1 and before and fixed in v.3.5.2.0 has a broken authorization schema. Moderate Unreviewed
CVE-2025-26853 was published Mar 20, 2025
A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been rated as... Moderate Unreviewed
CVE-2025-2553 was published Mar 20, 2025
A vulnerability classified as problematic was found in Audi UTR Dashcam 2.0. Affected by this... Moderate Unreviewed
CVE-2025-2556 was published Mar 20, 2025
A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02 and classified as problematic.... Moderate Unreviewed
CVE-2025-2550 was published Mar 20, 2025
A vulnerability has been found in D-Link DIR-618 and DIR-605L 2.02/3.02 and classified as... Moderate Unreviewed
CVE-2025-2549 was published Mar 20, 2025
A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been declared as... Moderate Unreviewed
CVE-2025-2552 was published Mar 20, 2025
A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been classified as... Moderate Unreviewed
CVE-2025-2551 was published Mar 20, 2025
The data exposure vulnerability in Liferay Portal 7.4.0 through 7.4.3.126, and Liferay DXP 2024... Moderate Unreviewed
CVE-2025-2565 was published Mar 20, 2025
A vulnerability, which was classified as problematic, was found in D-Link DIR-618 and DIR-605L 2... Moderate Unreviewed
CVE-2025-2548 was published Mar 20, 2025
A vulnerability, which was classified as problematic, has been found in D-Link DIR-618 and DIR... Moderate Unreviewed
CVE-2025-2547 was published Mar 20, 2025
A vulnerability classified as problematic was found in D-Link DIR-618 and DIR-605L 2.02/3.02.... Moderate Unreviewed
CVE-2025-2546 was published Mar 20, 2025
Improper Restriction of Excessive Authentication Attempts vulnerability in BG-TEK Coslat Hotspot... Moderate Unreviewed
CVE-2025-1496 was published Mar 20, 2025
HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle ... Moderate Unreviewed
CVE-2025-0254 was published Mar 20, 2025
The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Directory... Moderate Unreviewed
CVE-2024-13920 was published Mar 20, 2025
A Cross-Site Request Forgery (CSRF) vulnerability exists in the Signup feature of mlflow/mlflow... Moderate Unreviewed
CVE-2025-1473 was published Mar 20, 2025
The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2025-1802 was published Mar 20, 2025
Severity: medium (5.8) / important Server-Side Request Forgery (SSRF), Improper Neutralization... Moderate Unreviewed
CVE-2025-27888 was published Mar 20, 2025
A vulnerability in the SageMaker Workflow component of aws/sagemaker-python-sdk allows for the... Moderate Unreviewed
CVE-2025-0508 was published Mar 20, 2025
A Server-Side Request Forgery (SSRF) vulnerability was discovered in gaizhenbiao/chuanhuchatgpt... Moderate Unreviewed
CVE-2025-0188 was published Mar 20, 2025
A Server-Side Request Forgery (SSRF) vulnerability was identified in langgenius/dify version 0.10... Moderate Unreviewed
CVE-2025-0184 was published Mar 20, 2025
A Denial of Service (DoS) vulnerability exists in the file upload feature of gaizhenbiao... Moderate Unreviewed
CVE-2025-0191 was published Mar 20, 2025
A stored Cross-site Scripting (XSS) vulnerability exists in the latest version of wandb/openui.... Moderate Unreviewed
CVE-2025-0192 was published Mar 20, 2025
A stored cross-site scripting (XSS) vulnerability exists in the Latex Proof-Reading Module of... Moderate Unreviewed
CVE-2025-0183 was published Mar 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database