GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,326
Composer 4,815
Erlang 36
GitHub Actions 32
Go 2,401
Maven 5,798
npm 4,044
NuGet 723
pip 3,830
Pub 12
RubyGems 933
Rust 1,003
Swift 38

Unreviewed advisories

All unreviewed 264,243

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

11,360 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability classified as critical was found in Metasoft 美特软件 MetaCRM up to 6.4.2. This... Moderate Unreviewed

CVE-2025-7876 was published Jul 20, 2025

A command injection vulnerability exists in LILIN Digital Video Recorder (DVR) devices prior to... Critical Unreviewed

CVE-2025-34132 was published Jul 17, 2025

A command injection vulnerability exists in LILIN LILIN Digital Video Recorder (DVR) devices... High Unreviewed

CVE-2025-34129 was published Jul 17, 2025

A buffer overflow vulnerability exists in Heroes of Might and Magic III Complete 4.0.0.0, HD Mod... High Unreviewed

CVE-2025-34124 was published Jul 17, 2025

A stack-based buffer overflow vulnerability exists in VideoCharge Studio 2.12.3.685 when... High Unreviewed

CVE-2025-34123 was published Jul 16, 2025

A path traversal vulnerability exists in Linknat VOS Manager versions prior to 2.1.9.07,... High Unreviewed

CVE-2025-34118 was published Jul 16, 2025

A template injection vulnerability exists in Sawtooth Software’s Lighthouse Studio versions prior... Critical Unreviewed

CVE-2025-34300 was published Jul 16, 2025

Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204... High Unreviewed

CVE-2025-6558 was published Jul 15, 2025

An authenticated command injection vulnerability exists in OP5 Monitor through version 7.1.9 via... High Unreviewed

CVE-2025-34115 was published Jul 15, 2025

A stack-based buffer overflow vulnerability exists in the login functionality of Disk Pulse... High Unreviewed

CVE-2025-34108 was published Jul 15, 2025

A remote command execution vulnerability exists in IPFire before version 2.19 Core Update 101 via... High Unreviewed

CVE-2025-34116 was published Jul 15, 2025

An unauthenticated arbitrary file upload vulnerability exists in Tiki Wiki CMS Groupware version... Critical Unreviewed

CVE-2025-34111 was published Jul 15, 2025

An authenticated command injection vulnerability exists in Tiki Wiki CMS versions ≤14.1, ≤12.4... High Unreviewed

CVE-2025-34113 was published Jul 15, 2025

A stack-based buffer overflow vulnerability exists in the built-in web interface of DiskBoss... Critical Unreviewed

CVE-2025-34105 was published Jul 15, 2025

An unauthenticated remote command execution vulnerability exists in Samsung WLAN AP WEA453e... Critical Unreviewed

CVE-2025-34068 was published Jul 15, 2025

Improper input validation in Microsoft Edge (Chromium-based) allows an authorized attacker to... Moderate Unreviewed

CVE-2025-47182 was published Jul 11, 2025

When passing values outside of the expected range to QColorTransferGenericFunction it can cause a... Low Unreviewed

CVE-2025-5992 was published Jul 11, 2025

Emerson ValveLink products receive input or data, but it do not validate or incorrectly ... Moderate Unreviewed

CVE-2025-53471 was published Jul 11, 2025

An unauthenticated command injection vulnerability exists in Serviio Media Server versions 1.4... Critical Unreviewed

CVE-2025-34101 was published Jul 10, 2025

An unrestricted file upload vulnerability exists in BuilderEngine 3.5.0 via the integration of... Critical Unreviewed

CVE-2025-34100 was published Jul 10, 2025

A remote code execution vulnerability exists in CryptoLog (PHP version, discontinued since 2009)... Critical Unreviewed

CVE-2025-34102 was published Jul 10, 2025

An unauthenticated command injection vulnerability exists in VICIdial versions 2.9 RC1 through 2... Critical Unreviewed

CVE-2025-34099 was published Jul 10, 2025

HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate... High Unreviewed

CVE-2024-42516 was published Jul 10, 2025

A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE... High Unreviewed

CVE-2025-6376 was published Jul 9, 2025

A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE... High Unreviewed

CVE-2025-6377 was published Jul 9, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

11,360 advisories