GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,883
Composer 5,065
Erlang 39
GitHub Actions 38
Go 2,700
Maven 6,139
npm 4,328
NuGet 761
pip 4,100
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,799

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

106,271 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A flaw was found in Undertow that can cause remote denial of service attacks. When the server... High Unreviewed

CVE-2024-3884 was published Dec 3, 2025

The password reset mechanism for the Pivot client application is weak, and it may allow an... High Unreviewed

CVE-2025-53704 was published Dec 5, 2025

Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap (Port 162)... High Unreviewed

CVE-2025-13373 was published Dec 5, 2025

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS’s certificate request command... High Unreviewed

CVE-2025-12026 was published Dec 5, 2025

The web interface of the Silicon Labs Simplicity Device Manager is exposed publicly and can be... High Unreviewed

CVE-2025-10285 was published Dec 5, 2025

A memory corruption vulnerability in WatchGuard Fireware OS may allow an unauthenticated attacker... High Unreviewed

CVE-2025-11838 was published Dec 5, 2025

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated... High Unreviewed

CVE-2025-12196 was published Dec 5, 2025

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated... High Unreviewed

CVE-2025-12195 was published Dec 5, 2025

A stack-based buffer overflow vulnerability [CWE-121] in WatchGuard Fireware OS's certificate... High Unreviewed

CVE-2025-1547 was published Dec 5, 2025

DCIM dcTrack allows an attacker to misuse certain remote access features. An authenticated user... High Unreviewed

CVE-2025-66238 was published Dec 5, 2025

The SolisCloud API suffers from a Broken Access Control vulnerability, specifically an Insecure... High Unreviewed

CVE-2025-13932 was published Dec 5, 2025

An XPath Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated... High Unreviewed

CVE-2025-1545 was published Dec 5, 2025

A use after free memory corruption issue exists in Yandex Browser for Desktop prior to version 24... High Unreviewed

CVE-2023-26226 was published May 30, 2025

A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive... High Unreviewed

CVE-2024-8176 was published Mar 14, 2025

Use of an insecure temporary directory in the Windows License plugin for the Checkmk Windows... High Unreviewed

CVE-2025-32919 was published Oct 9, 2025

In the Linux kernel, the following vulnerability has been resolved: mtd: core: add missing... High Unreviewed

CVE-2022-50283 was published Sep 15, 2025

Insufficient escaping in the report scheduler within Checkmk <2.4.0p13, <2.3.0p38, <2.2.0p46 and... High Unreviewed

CVE-2025-39664 was published Oct 9, 2025

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote... High Unreviewed

CVE-2025-13639 was published Dec 2, 2025

In the Linux kernel, the following vulnerability has been resolved: phy: hisilicon: Fix an out... High Unreviewed

CVE-2023-53238 was published Sep 15, 2025

AirKeyboard iOS App 1.0.5 contains a missing authentication vulnerability that allows... High Unreviewed

CVE-2025-66555 was published Dec 4, 2025

Remote Keyboard Desktop 1.0.1 enables remote attackers to execute system commands via the... High Unreviewed

CVE-2025-66576 was published Dec 4, 2025

VeeVPN 1.6.1 contains an unquoted service path vulnerability in the VeePNService that allows... High Unreviewed

CVE-2025-66575 was published Dec 4, 2025

R Radio Network FM Transmitter 1.07 allows unauthenticated attackers to access the admin user's... High Unreviewed

CVE-2024-58277 was published Dec 4, 2025

The OTP Integration Kit for PingFederate fails to enforce HTTP method validation and state... High Unreviewed

CVE-2025-27935 was published Dec 4, 2025

dawa-pharma-1.0 allows unauthenticated attackers to execute SQL queries on the server, allowing... High Unreviewed

CVE-2023-53734 was published Dec 4, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

106,271 advisories