GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,718
Composer 4,743
Erlang 35
GitHub Actions 29
Go 2,318
Maven 5,601
npm 3,950
NuGet 711
pip 3,729
Pub 12
RubyGems 920
Rust 965
Swift 38

Unreviewed advisories

All unreviewed 257,707

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

257,707 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Golo - City Travel Guide WordPress Theme theme for WordPress is vulnerable to privilege... Critical Unreviewed

CVE-2025-4797 was published Jun 3, 2025

The wpForo + wpForo Advanced Attachments plugin for WordPress is vulnerable to Stored Cross-Site... High Unreviewed

CVE-2025-4224 was published Jun 3, 2025

The Broken Link Checker plugin for WordPress is vulnerable to unauthorized data access due to a... Moderate Unreviewed

CVE-2025-4047 was published Jun 3, 2025

The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to PHP Object... Moderate Unreviewed

CVE-2025-2939 was published Jun 3, 2025

Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to... High Unreviewed

CVE-2025-5068 was published Jun 3, 2025

Arris VIP1113 devices through 2025-05-30 with KreaTV SDK allow file overwrite via TFTP because a... Moderate Unreviewed

CVE-2025-49162 was published Jun 3, 2025

Arris VIP1113 devices through 2025-05-30 with KreaTV SDK allow booting an arbitrary image via a... Moderate Unreviewed

CVE-2025-49163 was published Jun 3, 2025

Arris VIP1113 devices through 2025-05-30 with KreaTV SDK have a firmware decryption key of... Moderate Unreviewed

CVE-2025-49164 was published Jun 3, 2025

Out of bounds read and write in V8 in Google Chrome prior to 137.0.7151.68 allowed a remote... High Unreviewed

CVE-2025-5419 was published Jun 3, 2025

The WordPress Comments Import & Export plugin for WordPress is vulnerable to unauthorized... Moderate Unreviewed

CVE-2025-3919 was published Jun 3, 2025

Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed

CVE-2025-1051 was published Jun 2, 2025

An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... High Unreviewed

CVE-2025-23105 was published Jun 2, 2025

An issue was discovered in Samsung Mobile Processor Exynos 1480 and 2400. The lack of a length... Critical Unreviewed

CVE-2025-23099 was published Jun 2, 2025

Missing Authorization vulnerability in Mage people team Booking and Rental Manager allows... Moderate Unreviewed

CVE-2025-47585 was published Jun 2, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Cimatti Consulting Contact Forms by Cimatti... Moderate Unreviewed

CVE-2025-49069 was published Jun 2, 2025

A deserialization of untrusted data vulnerability affecting DELMIA Apriso from Release 2020... Critical Unreviewed

CVE-2025-5086 was published Jun 2, 2025

osTicket prior to v1.17.6 and v1.18.2 are vulnerable to Broken Access Control Vulnerability in ... Moderate Unreviewed

CVE-2025-45387 was published Jun 2, 2025

An open redirection vulnerability exists in multiple WSO2 products due to improper validation of... Moderate Unreviewed

CVE-2024-1440 was published Jun 2, 2025

An arbitrary file upload vulnerability exists in multiple WSO2 products due to improper... Moderate Unreviewed

CVE-2024-7074 was published Jun 2, 2025

A server-side request forgery (SSRF) vulnerability exists in multiple WSO2 products due to... Moderate Unreviewed

CVE-2024-7073 was published Jun 2, 2025

A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP... High Unreviewed

CVE-2024-57459 was published Jun 2, 2025

In Splunk Enterprise versions below 9.4.2, 9.3.4 and 9.2.6, and Splunk Cloud Platform versions... Moderate Unreviewed

CVE-2025-20297 was published Jun 2, 2025

In Universal Forwarder for Windows versions below 9.4.2, 9.3.4, 9.2.6, and 9.1.9, a new... High Unreviewed

CVE-2025-20298 was published Jun 2, 2025

A stored cross-site scripting (XSS) vulnerability exists in the Management Console of multiple... Moderate Unreviewed

CVE-2024-3509 was published Jun 2, 2025

A reflected cross-site scripting (XSS) vulnerability exists in multiple [Vendor Name] products... Moderate Unreviewed

CVE-2024-8008 was published Jun 2, 2025

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

257,707 advisories