GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,763
Composer 4,750
Erlang 35
GitHub Actions 29
Go 2,323
Maven 5,608
npm 3,956
NuGet 712
pip 3,739
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,266

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,794 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper Control of Generation of Code ('Code Injection') vulnerability in cmoreira Team Showcase... Moderate Unreviewed

CVE-2025-49250 was published Jun 6, 2025

Code injection vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability... Moderate Unreviewed

CVE-2025-41362 was published Jun 6, 2025

Code injection vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability... Moderate Unreviewed

CVE-2025-41365 was published Jun 6, 2025

IBM QRadar Suite Software 1.10.12.0 through 1.11.2.0 and IBM Cloud Pak for Security 1.10.0.0... High Unreviewed

CVE-2025-25021 was published Jun 3, 2025

In Audiocodes Mediapack MP-11x through 6.60A.369.002, a crafted POST request request may result... Critical Unreviewed

CVE-2025-32106 was published Jun 3, 2025

Kea configuration and API directives can be used to load a malicious hook library. Many common... High Unreviewed

CVE-2025-32801 was published May 28, 2025

A vulnerability classified as critical has been found in defog-ai introspect up to 0.1.4. This... Moderate Unreviewed

CVE-2025-5151 was published May 25, 2025

An issue in Hospital Management System In PHP V4.0 allows a remote attacker to execute arbitrary... Critical Unreviewed

CVE-2024-51360 was published May 23, 2025

Predictable filename vulnerabilities in ASPECT may expose sensitive information to a potential... High Unreviewed

CVE-2024-13952 was published May 22, 2025

SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of database... High Unreviewed

CVE-2024-13928 was published May 22, 2025

Remote Code Execution vulnerabilities are present in ASPECT if session administrator credentials... High Unreviewed

CVE-2025-30172 was published May 22, 2025

Servlet injection vulnerabilities in ASPECT allow remote code execution if session administrator... High Unreviewed

CVE-2024-13929 was published May 22, 2025

Remote Code Execution vulnerabilities are present in ASPECT if session administra-tor credentials... High Unreviewed

CVE-2024-9639 was published May 22, 2025

A vulnerability in Vtiger CRM Open Source Edition v8.3.0 allows an attacker with admin privileges... High Unreviewed

CVE-2025-45753 was published May 21, 2025

A vulnerability in SeedDMS 6.0.32 allows an attacker with admin privileges to execute arbitrary... High Unreviewed

CVE-2025-45752 was published May 21, 2025

An issue in Valvesoftware Steam Client Steam Client 1738026274 allows attackers to escalate... High Unreviewed

CVE-2025-27998 was published May 21, 2025

A command injection vulnerability in the component /cgi-bin/qos.cgi of Wavlink WL-WN579A3 v1.0... Critical Unreviewed

CVE-2025-44881 was published May 20, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in RomanCode MapSVG Lite... Moderate Unreviewed

CVE-2025-48120 was published May 16, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in RS WP THEMES RS WP... Moderate Unreviewed

CVE-2025-48119 was published May 16, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in RomanCode MapSVG... Moderate Unreviewed

CVE-2025-47562 was published May 16, 2025

The UiPress lite | Effortless custom dashboards, admin themes and pages plugin for WordPress is... High Unreviewed

CVE-2025-3053 was published May 15, 2025

mediDOK before 2.5.18.43 allows remote attackers to achieve remote code execution on a target... Critical Unreviewed

CVE-2025-32363 was published May 14, 2025

A code injection vulnerability in the Palo Alto Networks Cortex XDR® Broker VM allows an... Moderate Unreviewed

CVE-2025-0134 was published May 14, 2025

Netgate pfSense CE (prior to 2.8.0 beta release) and corresponding Plus builds are vulnerable to... High Unreviewed

CVE-2024-54780 was published May 14, 2025

EDIMAX CV7428NS v1.20 was discovered to contain a remote code execution (RCE) vulnerability via... Critical Unreviewed

CVE-2025-45857 was published May 13, 2025

Previous 1 2 3 4 5 … 151 152 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,794 advisories