GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,751
Composer 4,748
Erlang 35
GitHub Actions 29
Go 2,321
Maven 5,605
npm 3,955
NuGet 712
pip 3,736
Pub 12
RubyGems 921
Rust 972
Swift 38

Unreviewed advisories

All unreviewed 257,943

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22,504 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Deserialization of Untrusted Data vulnerability in AncoraThemes Jarvis – Night Club, Concert,... Critical Unreviewed

CVE-2025-32292 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Tour | Travel Agency... Critical Unreviewed

CVE-2025-39485 was published May 23, 2025

Incorrect Privilege Assignment vulnerability in pebas CouponXL allows Privilege Escalation. This... Critical Unreviewed

CVE-2025-39489 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in GoodLayers Goodlayers Hostel allows Object... Critical Unreviewed

CVE-2025-39500 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-39501 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in themeton Dash allows Object Injection. This... Critical Unreviewed

CVE-2025-31049 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in AncoraThemes Fish House allows Object... Critical Unreviewed

CVE-2025-31631 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31056 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in themeton The Business allows Object Injection.... Critical Unreviewed

CVE-2025-31430 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31914 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in AncoraThemes Umberto allows Object Injection.... Critical Unreviewed

CVE-2025-31423 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31397 was published May 23, 2025

Incorrect Privilege Assignment vulnerability in quantumcloud Simple Business Directory Pro allows... Critical Unreviewed

CVE-2025-31918 was published May 23, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in joy2012bd JP Students Result... Critical Unreviewed

CVE-2025-31916 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in themeton HotStar – Multi-Purpose Business... Critical Unreviewed

CVE-2025-31069 was published May 23, 2025

Token used for resetting passwords in MegaBIP software are generated using a small space of... Critical Unreviewed

CVE-2025-3895 was published May 23, 2025

An Out of Bounds Write occurs when the native library attempts PDF rendering, which can be... Critical Unreviewed

CVE-2025-5099 was published May 23, 2025

PrinterShare Android application allows the capture of Gmail authentication tokens that can be... Critical Unreviewed

CVE-2025-5098 was published May 23, 2025

2nd Order SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of... Critical Unreviewed

CVE-2024-13955 was published May 22, 2025

An incorrect authorization vulnerability exists in multiple WSO2 products due to a business logic... Critical Unreviewed

CVE-2024-6914 was published May 22, 2025

An issue in Ocuco Innovation - INNOVASERVICEINTF.EXE v2.10.24.17 allows attackers to bypass... Critical Unreviewed

CVE-2024-41195 was published May 22, 2025

An issue in Ocuco Innovation - REPORTS.EXE v2.10.24.13 allows attackers to bypass authentication... Critical Unreviewed

CVE-2024-41198 was published May 22, 2025

An issue in Ocuco Innovation - INVCLIENT.EXE v2.10.24.5 allows attackers to bypass authentication... Critical Unreviewed

CVE-2024-41197 was published May 22, 2025

An issue in Ocuco Innovation - REPORTSERVER.EXE v2.10.24.13 allows attackers to bypass... Critical Unreviewed

CVE-2024-41196 was published May 22, 2025

An escalation of privilege vulnerability in ASPECT could provide an attacker root access to a... Critical Unreviewed

CVE-2024-48853 was published May 22, 2025

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

22,504 advisories