GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,811
Composer 4,472
Erlang 33
GitHub Actions 24
Go 2,183
Maven 5,419
npm 3,841
NuGet 696
pip 3,600
Pub 12
RubyGems 911
Rust 910
Swift 38

Unreviewed advisories

All unreviewed 248,570

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

248,570 advisories

Filter by severity

Sort by

Least recently updated

In Linksys E5600 V1.1.0.26, the \usr\share\lua\runtime.lua file contains a command injection... High Unreviewed

CVE-2025-29226 was published Mar 21, 2025

In Linksys E5600 V1.1.0.26, the \usr\share\lua\runtime.lua file contains a command injection... High Unreviewed

CVE-2025-29227 was published Mar 21, 2025

Insecure permissions in kuadrant v0.11.3 allow attackers to gain access to the service account's... Unknown Unreviewed

CVE-2024-53349 was published Mar 21, 2025

Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the pt... High Unreviewed

CVE-2025-29223 was published Mar 21, 2025

Insecure permissions in pipecd v0.49 allow attackers to gain access to the service account's... Unknown Unreviewed

CVE-2024-53351 was published Mar 21, 2025

An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiOS... Moderate Unreviewed

CVE-2019-16151 was published Mar 21, 2025

LoxiLB v.0.9.7 and before is vulnerable to Incorrect Access Control which allows attackers to... Unknown Unreviewed

CVE-2024-53348 was published Mar 21, 2025

Insecure permissions in kubeslice v1.3.1 allow attackers to gain access to the service account's... Unknown Unreviewed

CVE-2024-53350 was published Mar 21, 2025

IBM Storage Virtualize vSphere Remote Plug-in 1.0 and 1.1 could allow a remote user to obtain... Critical Unreviewed

CVE-2023-43029 was published Mar 21, 2025

Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... High Unreviewed

CVE-2025-29230 was published Mar 21, 2025

Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS... High Unreviewed

CVE-2025-30349 was published Mar 21, 2025

A vulnerability classified as problematic was found in Open Asset Import Library Assimp 5.4.3.... Moderate Unreviewed

CVE-2025-2591 was published Mar 21, 2025

A vulnerability, which was classified as critical, has been found in Open Asset Import Library... Moderate Unreviewed

CVE-2025-2592 was published Mar 21, 2025

Guangzhou Hongfan Technology Co., LTD. iOffice20 has any user login vulnerability. An attacker... Unknown Unreviewed

CVE-2024-57490 was published Mar 21, 2025

When installing Nessus Agent to a non-default location on a Windows host, Nessus Agent versions... High Unreviewed

CVE-2025-24915 was published Mar 21, 2025

An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to self sign... Moderate Unreviewed

CVE-2021-25635 was published Mar 21, 2025

Phpgurukul Human Metapneumovirus (HMPV) – Testing Management System v1.0 is vulnerable to SQL... Unknown Unreviewed

CVE-2025-29640 was published Mar 21, 2025

Phpgurukul Vehicle Record Management System v1.0 is vulnerable to SQL Injection in /index.php via... Unknown Unreviewed

CVE-2025-29641 was published Mar 21, 2025

A vulnerability has been found in FastCMS up to 0.1.5 and classified as critical. Affected by... Moderate Unreviewed

CVE-2025-2593 was published Mar 21, 2025

A vulnerability was found in code-projects Human Resource Management System 1.0.1 and classified... Moderate Unreviewed

CVE-2025-2589 was published Mar 21, 2025

A vulnerability was found in code-projects Human Resource Management System 1.0.1. It has been... Moderate Unreviewed

CVE-2025-2590 was published Mar 21, 2025

Reflected Cross-Site Scripting (XSS) in ITIUM 6050 version 5.5.5.2-b3526 from Impact Technologies... Moderate Unreviewed

CVE-2025-2597 was published Mar 21, 2025

A vulnerability has been found in Hercules Augeas 1.14.1 and classified as problematic. This... Moderate Unreviewed

CVE-2025-2588 was published Mar 21, 2025

A vulnerability, which was classified as critical, was found in Jinher OA C6 1.0. This affects an... Moderate Unreviewed

CVE-2025-2587 was published Mar 21, 2025

Mattermost versions 10.4.x <= 10.4.2, 10.3.x <= 10.3.3, 9.11.x <= 9.11.8 fail to fail to enforce... Moderate Unreviewed

CVE-2025-27933 was published Mar 21, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

248,570 advisories