GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,702
Composer 5,025
Erlang 39
GitHub Actions 38
Go 2,662
Maven 6,115
npm 4,289
NuGet 760
pip 4,069
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,668

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

105,826 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-11001 was published Nov 20, 2025

The ELCA Star Transmitter Remote Control firmware 1.25 for STAR150, BP1000, STAR300, STAR2000,... High Unreviewed

CVE-2025-63209 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... High Unreviewed

CVE-2025-34335 was published Nov 19, 2025

eGovFramework/egovframe-common-components versions up to and including 4.3.1 includes Web Editor... High Unreviewed

CVE-2025-34337 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... High Unreviewed

CVE-2025-34333 was published Nov 19, 2025

Twonky Server 8.5.2 on Linux and Windows is vulnerable to a cryptographic flaw, use of hard-coded... High Unreviewed

CVE-2025-13316 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23 are... High Unreviewed

CVE-2025-34334 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... High Unreviewed

CVE-2025-34331 was published Nov 19, 2025

A vulnerability was detected in Tenda CH22 1.0.0.1. Affected is the function formWrlExtraGet of... High Unreviewed

CVE-2025-13400 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... High Unreviewed

CVE-2025-34332 was published Nov 19, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in Progress DataDirect... High Unreviewed

CVE-2025-10703 was published Nov 19, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in Progress DataDirect... High Unreviewed

CVE-2025-10702 was published Nov 19, 2025

Open Redirect in URL parameter in Automated Logic WebCTRL and Carrier i-Vu versions 6.0, 6.5, 7.0... High Unreviewed

CVE-2024-8527 was published Nov 19, 2025

The ITEL ISO FM SFN Adapter (firmware ISO2 2.0.0.0, WebServer 2.0) is vulnerable to session... High Unreviewed

CVE-2025-63219 was published Nov 19, 2025

An attacker with a Looker Developer role could manipulate a LookML project to exploit a race... High Unreviewed

CVE-2025-12472 was published Nov 19, 2025

Inefficient algorithm complexity in mjson in HAProxy allows remote attackers to cause a denial of... High Unreviewed

CVE-2025-11230 was published Nov 19, 2025

Allocation of Resources Without Limits or Throttling vulnerability in Shelly Pro 4PM (before v1.6... High Unreviewed

CVE-2025-11243 was published Nov 19, 2025

Out-of-bounds Read in Shelly Pro 3EM (before v1.4.4) allows Overread Buffers. High Unreviewed

CVE-2025-12056 was published Nov 19, 2025

The Giveaways and Contests by RafflePress – Get More Website Traffic, Email Subscribers, and... High Unreviewed

CVE-2025-12484 was published Nov 19, 2025

The Code Snippets plugin for WordPress is vulnerable to PHP Code Injection in all versions up to,... High Unreviewed

CVE-2025-13035 was published Nov 19, 2025

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-13206 was published Nov 19, 2025

Insertion of Sensitive Information into Log File vulnerability in upKeeper Solutions upKeeper... High Unreviewed

CVE-2025-11446 was published Nov 19, 2025

The WP Import – Ultimate CSV XML Importer for WordPress plugin for WordPress is vulnerable to PHP... High Unreviewed

CVE-2025-13145 was published Nov 19, 2025

The Community Events plugin for WordPress is vulnerable to SQL Injection via the 'dayofyear'... High Unreviewed

CVE-2025-12646 was published Nov 19, 2025

DLL Loading vulnerability in NEC Corporation RakurakuMusen Start EX All Verisons allows a... High Unreviewed

CVE-2025-12852 was published Nov 19, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

105,826 advisories