GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,393
Composer 4,825
Erlang 36
GitHub Actions 32
Go 2,417
Maven 5,811
npm 4,054
NuGet 723
pip 3,845
Pub 12
RubyGems 933
Rust 1,005
Swift 38

Unreviewed advisories

All unreviewed 264,899

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,101 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Tigo Energy's Cloud Connect Advanced (CCA) device contains hard-coded credentials that allow... Critical Unreviewed

CVE-2025-7768 was published Aug 6, 2025

An issue was discovered on Marbella KR8s Dashcam FF 2.0.8 devices. Once access is gained either... Critical Unreviewed

CVE-2025-30127 was published Aug 6, 2025

A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML... Critical Unreviewed

CVE-2025-49796 was published Jun 16, 2025

A flaw was found in GNOME Maps, which is vulnerable to a code injection attack via its service... Critical Unreviewed

CVE-2023-43091 was published Nov 17, 2024

NVIDIA Triton Inference Server contains a vulnerability in the HTTP server, where an attacker... Critical Unreviewed

CVE-2025-23317 was published Aug 6, 2025

NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability where an attacker... Critical Unreviewed

CVE-2025-23310 was published Aug 6, 2025

NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a stack... Critical Unreviewed

CVE-2025-23311 was published Aug 6, 2025

Adobe Experience Manager versions 6.5.23 and earlier are affected by a Misconfiguration... Critical Unreviewed

CVE-2025-54253 was published Aug 5, 2025

CL4/6NX Plus and CL4/6NX-J Plus (Japan model) with the firmware versions prior to 1.15.5-r1 allow... Critical Unreviewed

CVE-2025-22470 was published Aug 6, 2025

The Reveal Listing plugin by smartdatasoft for WordPress is vulnerable to privilege escalation in... Critical Unreviewed

CVE-2025-6994 was published Aug 6, 2025

Foxit Reader Plugin version 2.2.1.530, bundled with Foxit Reader 5.4.4.11281, contains a stack... Critical Unreviewed

CVE-2013-10068 was published Aug 5, 2025

The web interface of multiple D-Link routers, including DIR-600 rev B (≤2.14b01) and DIR-300 rev... Critical Unreviewed

CVE-2013-10069 was published Aug 5, 2025

Glossword versions 1.8.8 through 1.8.12 contain an authenticated arbitrary file upload... Critical Unreviewed

CVE-2013-10067 was published Aug 5, 2025

A stack-based buffer overflow vulnerability exists in ActFax Server version 5.01. The server's... Critical Unreviewed

CVE-2013-10064 was published Aug 5, 2025

The WordPress plugin Advanced Custom Fields (ACF) version 3.5.1 and below contains a remote file... Critical Unreviewed

CVE-2012-10025 was published Aug 5, 2025

WP-Property plugin for WordPress through version 1.35.0 contains an unauthenticated file upload... Critical Unreviewed

CVE-2012-10027 was published Aug 5, 2025

The WordPress plugin Asset-Manager version 2.0 and below contains an unauthenticated arbitrary... Critical Unreviewed

CVE-2012-10026 was published Aug 5, 2025

An unauthenticated arbitrary file upload vulnerability exists in Kordil EDMS v2.2.60rc3. The... Critical Unreviewed

CVE-2013-10066 was published Aug 5, 2025

An unrestricted file upload vulnerability exists in Dell (acquired by Quest) KACE K1000 System... Critical Unreviewed

CVE-2014-125113 was published Aug 5, 2025

PHP-Charts v1.0 contains a PHP code execution vulnerability in wizard/url.php, where user... Critical Unreviewed

CVE-2013-10070 was published Aug 5, 2025

Narcissus is vulnerable to remote code execution via improper input handling in its image... Critical Unreviewed

CVE-2012-10033 was published Aug 5, 2025

FreeFloat FTP Server contains multiple critical design flaws that allow unauthenticated remote... Critical Unreviewed

CVE-2012-10030 was published Aug 5, 2025

Turbo FTP Server versions 1.30.823 and 1.30.826 contain a buffer overflow vulnerability in the... Critical Unreviewed

CVE-2012-10035 was published Aug 5, 2025

An issue in thinkphp3 v.3.2.5 allows a remote attacker to execute arbitrary code via the index... Critical Unreviewed

CVE-2025-50707 was published Aug 5, 2025

An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. There are verbose error... Critical Unreviewed

CVE-2025-46658 was published Aug 5, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,101 advisories