GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,190
Composer 4,893
Erlang 38
GitHub Actions 38
Go 2,550
Maven 6,018
npm 4,222
NuGet 745
pip 3,998
Pub 12
RubyGems 953
Rust 1,039
Swift 45

Unreviewed advisories

All unreviewed 273,104

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,656 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The HEIDENHAIN Controller TNC 640, version 340590 07 SP5, running HEROS 5.08.3 controlling the... Critical Unreviewed

CVE-2022-41648 was published Oct 28, 2022

Improper neutralization of special elements used in a template engine in Elastic Cloud Enterprise... Critical Unreviewed

CVE-2025-37729 was published Oct 13, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-6919 was published Oct 13, 2025

An OS Command Injection vulnerability affecting Station Launcher App in 3DEXPERIENCE platform... Critical Unreviewed

CVE-2025-9976 was published Oct 13, 2025

A broken authorization vulnerability in Kiloview NDI N30 allows a remote unauthenticated attacker... Critical Unreviewed

CVE-2025-9265 was published Oct 13, 2025

The WooCommerce Designer Pro plugin for WordPress, used by the Pricom - Printing Company & Design... Critical Unreviewed

CVE-2025-6439 was published Oct 11, 2025

The Ovatheme Events Manager plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2025-6553 was published Oct 11, 2025

The WP Freeio plugin for WordPress is vulnerable to Privilege Escalation in all versions up to,... Critical Unreviewed

CVE-2025-11533 was published Oct 11, 2025

In modem, there is a possible system crash due to improper input validation. This could lead to... Critical Unreviewed

CVE-2025-31718 was published Oct 11, 2025

In modem, there is a possible system crash due to improper input validation. This could lead to... Critical Unreviewed

CVE-2025-31717 was published Oct 11, 2025

JEEWMS 20250820 is vulnerable to SQL Injection in the exportXls function located in the src/main... Critical Unreviewed

CVE-2025-60269 was published Oct 10, 2025

Missing authentication vulnerability in TCMAN GIM v11. This allows an unauthenticated attacker to... Critical Unreviewed

CVE-2025-40664 was published May 26, 2025

code-projects Simple Car Rental System 1.0 has a permission bypass issue where low privilege... Critical Unreviewed

CVE-2025-60306 was published Oct 10, 2025

SourceCodester Pet Grooming Management Software 1.0 is vulnerable to SQL Injection in admin... Critical Unreviewed

CVE-2025-60316 was published Oct 9, 2025

E3 Site Supervisor (firmware version < 2.31F01) has a default admin user "ONEDAY" with a daily... Critical Unreviewed

CVE-2025-6519 was published Oct 10, 2025

Azure Entra ID Elevation of Privilege Vulnerability Critical Unreviewed

CVE-2025-59246 was published Oct 9, 2025

Azure Entra ID Elevation of Privilege Vulnerability Critical Unreviewed

CVE-2025-59218 was published Oct 9, 2025

Newforma Info Exchange (NIX) accepts serialized .NET data via the '/remoteweb/remote.rem'... Critical Unreviewed

CVE-2025-35050 was published Oct 9, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA/SaaS deployments)... Critical Unreviewed

CVE-2025-34210 was published Oct 2, 2025

A remote PHP code execution vulnerability exists in InstantCMS version 1.6 and earlier due to... Critical Unreviewed

CVE-2013-10051 was published Aug 1, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 22.0.1049 and... Critical Unreviewed

CVE-2025-34222 was published Sep 29, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 22.0.1049 and... Critical Unreviewed

CVE-2025-34218 was published Sep 29, 2025

NetSarang Xmanager Enterprise 5.0 Build 1232, Xmanager 5.0 Build 1045, Xshell 5.0 Build 1322,... Critical Unreviewed

CVE-2017-20203 was published Oct 9, 2025

An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Critical Unreviewed

CVE-2025-59974 was published Oct 9, 2025

An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Critical Unreviewed

CVE-2025-59978 was published Oct 9, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,656 advisories