GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,417
Composer 4,951
Erlang 39
GitHub Actions 38
Go 2,607
Maven 6,062
npm 4,251
NuGet 757
pip 4,017
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,289

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

104,800 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

GitLab has remediated an issue in EE affecting all versions from 17.1 before 18.3.5, 18.4 before... High Unreviewed

CVE-2025-11702 was published Oct 29, 2025

The installer of WTW EAGLE (for Windows) 3.0.8.0 contains an issue with the DLL search path,... High Unreviewed

CVE-2025-62776 was published Oct 29, 2025

HP ThinPro 8.1 System management application failed to verify user's true id. HP has released HP... High Unreviewed

CVE-2025-43017 was published Oct 28, 2025

Wazuh's File Integrity Monitoring (FIM), when configured with automatic threat removal, contains... High Unreviewed

CVE-2025-34294 was published Oct 28, 2025

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed

CVE-2025-61107 was published Oct 28, 2025

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed

CVE-2025-61104 was published Oct 28, 2025

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed

CVE-2025-61106 was published Oct 28, 2025

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via... High Unreviewed

CVE-2025-61103 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a command injection vulnerability that... High Unreviewed

CVE-2025-34312 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a command injection vulnerability that... High Unreviewed

CVE-2025-34311 was published Oct 28, 2025

An out-of-bounds write vulnerability exists in the XML parser functionality of GCC Productions... High Unreviewed

CVE-2025-53855 was published Oct 28, 2025

IPFire versions prior to 2.29 (Core Update 198) contain a SQL injection vulnerability that allows... High Unreviewed

CVE-2025-34304 was published Oct 28, 2025

A use-after-free vulnerability exists in the XML parser functionality of GCC Productions Inc.... High Unreviewed

CVE-2025-53814 was published Oct 28, 2025

By making minor configuration changes to the TropOS 4th Gen device, an authenticated user with... High Unreviewed

CVE-2025-1037 was published Oct 28, 2025

Command injection vulnerability exists in the “Logging” page of the web-based configuration... High Unreviewed

CVE-2025-1036 was published Oct 28, 2025

The “Diagnostics Tools” page of the web-based configuration utility does not properly validate... High Unreviewed

CVE-2025-1038 was published Oct 28, 2025

microCLAUDIA in v3.2.0 and prior has an improper access control vulnerability. This flaw allows... High Unreviewed

CVE-2025-41090 was published Oct 28, 2025

Webserver crash caused by scanning on TCP port 80 in Softing Industrial Automation GmbH gateways... High Unreviewed

CVE-2025-10150 was published Oct 28, 2025

Improper locking vulnerability in Softing Industrial Automation GmbH gateways allows infected... High Unreviewed

CVE-2025-10151 was published Oct 28, 2025

The Auto Featured Image (Auto Post Thumbnail) plugin for WordPress is vulnerable to Server-Side... High Unreviewed

CVE-2025-10145 was published Oct 28, 2025

The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-11735 was published Oct 28, 2025

Use of Hard-Coded Credentials issue exists in MZK-DP300N version 1.07 and earlier, which may... High Unreviewed

CVE-2025-62777 was published Oct 28, 2025

A vulnerability was detected in ermig1979 AntiDupl up to 2.3.12. Impacted is an unknown function... High Unreviewed

CVE-2025-12341 was published Oct 28, 2025

Liferay Portal 7.4.0 through 7.4.3.99, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA... High Unreviewed

CVE-2025-62260 was published Oct 28, 2025

CSRF vulnerability in Headless API in Liferay Portal 7.4.0 through 7.4.3.107, and Liferay DXP... High Unreviewed

CVE-2025-62258 was published Oct 28, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

104,800 advisories