GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,718
Composer 4,743
Erlang 35
GitHub Actions 29
Go 2,318
Maven 5,601
npm 3,950
NuGet 711
pip 3,729
Pub 12
RubyGems 920
Rust 965
Swift 38

Unreviewed advisories

All unreviewed 257,707

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,744 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to PHP Object... Moderate Unreviewed

CVE-2025-2939 was published Jun 3, 2025

A deserialization of untrusted data vulnerability affecting DELMIA Apriso from Release 2020... Critical Unreviewed

CVE-2025-5086 was published Jun 2, 2025

Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows remote code execution by... Critical Unreviewed

CVE-2025-49113 was published Jun 2, 2025

Deserialization of Untrusted Data vulnerability in ThimPress Course Builder allows Object... Critical Unreviewed

CVE-2025-48336 was published May 29, 2025

Apache InLong: JDBC Vulnerability For URLEncode and backspace bypass Moderate

CVE-2025-27526 was published for org.apache.inlong:manager-pojo (Maven) May 28, 2025

Apache InLong: JDBC Vulnerability for Invisible Character Bypass Leading to Arbitrary File Read Moderate

CVE-2025-27528 was published for org.apache.inlong:manager-pojo (Maven) May 28, 2025

Apache InLong: JDBC Vulnerability during verification processing High

CVE-2025-27522 was published for org.apache.inlong:manager-pojo (Maven) May 28, 2025

pypickle unsafe deserialization vulnerability Moderate

CVE-2025-5174 was published for pypickle (pip) May 26, 2025

A vulnerability has been found in HumanSignal label-studio-ml-backend up to... Moderate Unreviewed

CVE-2025-5173 was published May 26, 2025

FunAudioLLM InspireMusic deserialization vulnerability Moderate

CVE-2025-5148 was published for inspiremusic (pip) May 25, 2025

Deserialization of Untrusted Data vulnerability in Pagaleve Pix 4x sem juros - Pagaleve allows... Critical Unreviewed

CVE-2025-48287 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in AncoraThemes Kids Planet allows Object... Critical Unreviewed

CVE-2025-48289 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in Codexpert, Inc WC Affiliate allows Object... High Unreviewed

CVE-2025-47660 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in WPFunnels WPFunnels allows Object Injection.... Critical Unreviewed

CVE-2025-47530 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in CoinPayments CoinPayments.net Payment Gateway... Critical Unreviewed

CVE-2025-47532 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in ZoomIt ZoomSounds allows Object Injection.... Critical Unreviewed

CVE-2025-47568 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in themeton Acerola allows Object Injection. This... Critical Unreviewed

CVE-2025-31927 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in designthemes Crafts & Arts allows Object... High Unreviewed

CVE-2025-31924 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in designthemes Pet World allows Object Injection... High Unreviewed

CVE-2025-32284 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in designthemes Finance Consultant allows Object... High Unreviewed

CVE-2025-32293 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in AncoraThemes Jarvis – Night Club, Concert,... Critical Unreviewed

CVE-2025-32292 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Tour | Travel Agency... Critical Unreviewed

CVE-2025-39485 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in ThemeMakers Car Dealer allows Object Injection... Critical Unreviewed

CVE-2025-39480 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in BoldThemes Avantage allows Object Injection.... Critical Unreviewed

CVE-2025-39495 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in BoldThemes Medicare allows Object Injection.... Critical Unreviewed

CVE-2025-39499 was published May 23, 2025

Previous 1 2 3 4 5 … 69 70 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,744 advisories