GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,358
Composer 4,819
Erlang 36
GitHub Actions 32
Go 2,410
Maven 5,802
npm 4,046
NuGet 723
pip 3,842
Pub 12
RubyGems 933
Rust 1,003
Swift 38

Unreviewed advisories

All unreviewed 264,510

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,979 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The com.eypcnnapps.quickreboot (aka Eyuep Can Yilmaz {ROOT] Quick Reboot) application 1.0.8 for... High Unreviewed

CVE-2023-47355 was published Feb 5, 2024

A path traversal vulnerability exists in WeiPHP 5.0, an open source WeChat public account... High Unreviewed

CVE-2025-34045 was published Jun 26, 2025

A path traversal vulnerability exists in the Leadsec SSL VPN (formerly Lenovo NetGuard), allowing... High Unreviewed

CVE-2025-34047 was published Jun 26, 2025

A path traversal vulnerability exists in the web management interface of D-Link DSL-2730U, DSL... High Unreviewed

CVE-2025-34048 was published Jun 26, 2025

The MongoDB Server is susceptible to a denial of service vulnerability due to improper handling... High Unreviewed

CVE-2025-6709 was published Jun 26, 2025

Account users in Apache CloudStack by default are allowed to upload and register templates for... High Unreviewed

CVE-2024-45219 was published Oct 16, 2024

Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to... High Unreviewed

CVE-2024-39573 was published Jul 1, 2024

A local attacker with a local user account can leverage a vulnerable script via SSH to escalate... High Unreviewed

CVE-2025-24005 was published Jul 8, 2025

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0). The affected... High Unreviewed

CVE-2025-40593 was published Jul 8, 2025

Improper input validation in Windows Storage VSP Driver allows an authorized attacker to elevate... High Unreviewed

CVE-2025-47982 was published Jul 8, 2025

Improper input validation in SQL Server allows an unauthorized attacker to disclose information... High Unreviewed

CVE-2025-49719 was published Jul 8, 2025

An issue was discovered in L2 in Samsung Mobile Processor and Modem Exynos 2400 and Modem 5400.... High Unreviewed

CVE-2025-26780 was published Jul 7, 2025

Improper HTML sanitization in ZITADEL High

CVE-2024-28855 was published for github.com/zitadel/zitadel (Go) Mar 18, 2024

Kubernetes csi-proxy vulnerable to privilege escalation due to improper input validation High

CVE-2023-3893 was published for github.com/kubernetes-csi/csi-proxy (Go) Nov 3, 2023

A path traversal vulnerability exists in the Moodle LMS Jmol plugin version 6.1 and prior via the... High Unreviewed

CVE-2025-34031 was published Jun 26, 2025

An OS command injection vulnerability exists in the Blue Angel Software Suite running on embedded... High Unreviewed

CVE-2025-34033 was published Jun 26, 2025

A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE... High Unreviewed

CVE-2025-6376 was published Jul 9, 2025

A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE... High Unreviewed

CVE-2025-6377 was published Jul 9, 2025

An authenticated command injection vulnerability exists in OP5 Monitor through version 7.1.9 via... High Unreviewed

CVE-2025-34115 was published Jul 15, 2025

A stack-based buffer overflow vulnerability exists in the login functionality of Disk Pulse... High Unreviewed

CVE-2025-34108 was published Jul 15, 2025

A remote command execution vulnerability exists in IPFire before version 2.19 Core Update 101 via... High Unreviewed

CVE-2025-34116 was published Jul 15, 2025

An authenticated command injection vulnerability exists in Tiki Wiki CMS versions ≤14.1, ≤12.4... High Unreviewed

CVE-2025-34113 was published Jul 15, 2025

Import functionality is vulnerable to DNS rebinding attacks between verification and processing... High Unreviewed

CVE-2024-36471 was published Jun 11, 2024

HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate... High Unreviewed

CVE-2024-42516 was published Jul 10, 2025

Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204... High Unreviewed

CVE-2025-6558 was published Jul 15, 2025

Previous 1 2 … 196 197 198 199 200 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,979 advisories