Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,757
Erlang
35
GitHub Actions
29
Go
2,327
Maven
5,000+
npm
3,960
NuGet
712
pip
3,741
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+

281,261 advisories

Loading
A remote code injection vulnerability exists in the Ambari Metrics and AMS Alerts feature,... High Unreviewed
CVE-2024-51941 was published Jan 22, 2025
The tourmaster WordPress plugin before 5.3.5 does not escape generated URLs before outputting... High Unreviewed
CVE-2024-12400 was published Jan 30, 2025
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Moderate Unreviewed
CVE-2025-24733 was published Jan 24, 2025
A vulnerability has been identified in the libarchive library, specifically within the... Low Unreviewed
CVE-2025-5914 was published Jun 9, 2025
A vulnerability has been identified in the libarchive library. This flaw can be triggered when... Low Unreviewed
CVE-2025-5918 was published Jun 9, 2025
A vulnerability, which was classified as problematic, has been found in RocketChat up to 7.6.1.... Moderate Unreviewed
CVE-2025-5892 was published Jun 9, 2025
A vulnerability was found in juliangruber brace-expansion up to 1.1.11. It has been rated as... Low Unreviewed
CVE-2025-5889 was published Jun 9, 2025
A vulnerability classified as problematic was found in Unitech pm2 up to 6.0.6. This... Moderate Unreviewed
CVE-2025-5891 was published Jun 9, 2025
A vulnerability was found in Metabase 54.10. It has been classified as problematic. This affects... Moderate Unreviewed
CVE-2025-5895 was published Jun 9, 2025
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap... Low Unreviewed
CVE-2025-5915 was published Jun 9, 2025
A vulnerability has been identified in the libarchive library. This flaw involves an integer... Low Unreviewed
CVE-2025-5916 was published Jun 9, 2025
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one'... Low Unreviewed
CVE-2025-5917 was published Jun 9, 2025
A vulnerability classified as problematic has been found in actions toolkit 0.5.0. This affects... Moderate Unreviewed
CVE-2025-5890 was published Jun 9, 2025
A vulnerability was found in Tenda AC5 15.03.06.47. It has been classified as critical. Affected... High Unreviewed
CVE-2025-5863 was published Jun 9, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Maid Hiring Management... Moderate Unreviewed
CVE-2025-5860 was published Jun 9, 2025
A vulnerability has been found in Tenda AC7 15.03.06.44 and classified as critical. This... High Unreviewed
CVE-2025-5861 was published Jun 9, 2025
A vulnerability, which was classified as critical, was found in Tenda AC6 15.03.05.16. This... High Unreviewed
CVE-2025-5855 was published Jun 9, 2025
A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been... Moderate Unreviewed
CVE-2025-5859 was published Jun 9, 2025
The WP-Optimize WordPress plugin before 4.2.0 does not properly escape user input when checking... Moderate Unreviewed
CVE-2025-3951 was published Jun 2, 2025
A vulnerability classified as critical was found in PHPGurukul News Portal 4.1. Affected by this... Moderate Unreviewed
CVE-2025-5370 was published May 31, 2025
The Gearside Developer Dashboard WordPress plugin through 1.0.72 does not sanitise and escape a... Moderate Unreviewed
CVE-2025-4429 was published May 30, 2025
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1.0 through 11.1.4.7, 11.5.0... Moderate Unreviewed
CVE-2024-49350 was published May 29, 2025
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 19 could allow a remote attacker to... Critical Unreviewed
CVE-2025-3357 was published May 28, 2025
A vulnerability was found in FreeFloat FTP Server 1.0.0 and classified as critical. Affected by... Moderate Unreviewed
CVE-2025-5220 was published May 27, 2025
IBM Controller 11.0.0, 11.0.1, and 11.1.0 application could allow an authenticated user to obtain... Moderate Unreviewed
CVE-2025-33079 was published May 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database