Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,656
Maven
5,000+
npm
4,284
NuGet
760
pip
4,069
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

27,490 advisories

Loading
The Gravity Forms plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed
CVE-2025-12352 was published Nov 7, 2025
Cross-site Scripting vulnerability in NEC Corporation UNIVERGE IX from Ver.9.5 to Ver.10.7, from... Critical Unreviewed
CVE-2025-11546 was published Nov 7, 2025
oobabooga text-generation-webui trust_remote_code Reliance on Untrusted Inputs Remote Code... Critical Unreviewed
CVE-2025-12488 was published Nov 6, 2025
oobabooga text-generation-webui trust_remote_code Reliance on Untrusted Inputs Remote Code... Critical Unreviewed
CVE-2025-12487 was published Nov 6, 2025
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP... Critical Unreviewed
CVE-2022-50592 was published Nov 6, 2025
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP... Critical Unreviewed
CVE-2022-50593 was published Nov 6, 2025
SuiteCRM versions prior to 7.12.6 contain a SQL injection vulnerability within the processing of... Critical Unreviewed
CVE-2022-50589 was published Nov 6, 2025
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP... Critical Unreviewed
CVE-2022-50595 was published Nov 6, 2025
D-Link DIR-1260 Wi-Fi router firmware versions up to and including v1.20B05 contain a command... Critical Unreviewed
CVE-2022-50596 was published Nov 6, 2025
An issue was discovered in AnyDesk before 9.0.0. It has an integer overflow and resultant heap... Critical Unreviewed
CVE-2025-27918 was published Nov 6, 2025
The default configuration of WatchGuard Firebox devices through 2025-09-10 allows administrative... Critical Unreviewed
CVE-2025-59396 was published Nov 6, 2025
Incorrect Privilege Assignment vulnerability in KingAddons.com King Addons for Elementor king... Critical Unreviewed
CVE-2025-6325 was published Nov 6, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in KingAddons.com King Addons for... Critical Unreviewed
CVE-2025-6327 was published Nov 6, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Rometheme RTMKit rometheme-for... Critical Unreviewed
CVE-2025-62065 was published Nov 6, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in Elated-Themes Search &... Critical Unreviewed
CVE-2025-62064 was published Nov 6, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in hogash Kallyas kallyas.This... Critical Unreviewed
CVE-2025-62016 was published Nov 6, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Case-Themes Case Addons case... Critical Unreviewed
CVE-2025-62047 was published Nov 6, 2025
Incorrect Privilege Assignment vulnerability in Holest Engineering Selling Commander for... Critical Unreviewed
CVE-2025-60243 was published Nov 6, 2025
Deserialization of Untrusted Data vulnerability in WP User Manager WP User Manager wp-user... Critical Unreviewed
CVE-2025-60245 was published Nov 6, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Plugify Helpdesk Support Ticket... Critical Unreviewed
CVE-2025-60235 was published Nov 6, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Addify Custom User Registration... Critical Unreviewed
CVE-2025-60207 was published Nov 6, 2025
Incorrect Privilege Assignment vulnerability in Vito Peleg Atarim atarim-visual-collaboration... Critical Unreviewed
CVE-2025-60195 was published Nov 6, 2025
Authorization Bypass Through User-Controlled Key vulnerability in kamleshyadav Miraculous Core... Critical Unreviewed
CVE-2025-58627 was published Nov 6, 2025
Deserialization of Untrusted Data vulnerability in CRM Perks WP Gravity Forms Keap/Infusionsoft... Critical Unreviewed
CVE-2025-58636 was published Nov 6, 2025
Authentication Bypass by Spoofing vulnerability in Saad Iqbal All In One Login change-wp-admin... Critical Unreviewed
CVE-2025-58595 was published Nov 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database