GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,667
Composer 4,466
Erlang 33
GitHub Actions 23
Go 2,166
Maven 5,398
npm 3,830
NuGet 696
pip 3,507
Pub 12
RubyGems 909
Rust 904
Swift 38

Unreviewed advisories

All unreviewed 247,842

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,644 advisories

Filter by severity

Sort by

Least recently updated

SQL injection vulnerability in the Innovación y Cualificación local administration plugin ajax... Critical Unreviewed

CVE-2025-2199 was published Mar 17, 2025

QL injection vulnerability in the IcProgreso Innovación y Cualificación plugin. This... Critical Unreviewed

CVE-2025-2200 was published Mar 17, 2025

The U-Office Force from e-Excellence has an Improper Authentication vulnerability, allowing... Critical Unreviewed

CVE-2025-2395 was published Mar 17, 2025

A vulnerability, which was classified as very critical, was found in IROAD Dash Cam X5 and Dash... Critical Unreviewed

CVE-2025-2345 was published Mar 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-26875 was published Mar 16, 2025

The Traveler theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and... Critical Unreviewed

CVE-2025-1771 was published Mar 15, 2025

The device uses a weak hashing alghorithm to create the password hash. Hence, a matching password... Critical Unreviewed

CVE-2025-27595 was published Mar 14, 2025

A Privilege Escalation through a Mass Assignment exists in Camaleon CMS When a user wishes to... Critical Unreviewed

CVE-2025-2304 was published Mar 14, 2025

The product can be used to distribute malicious code using SDD Device Drivers due to missing... Critical Unreviewed

CVE-2025-27593 was published Mar 14, 2025

The Realteo - Real Estate Plugin by Purethemes plugin for WordPress, used by the Findeo Theme, is... Critical Unreviewed

CVE-2025-2232 was published Mar 14, 2025

The Civi - Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable... Critical Unreviewed

CVE-2024-13771 was published Mar 14, 2025

The CiyaShop - Multipurpose WooCommerce Theme theme for WordPress is vulnerable to PHP Object... Critical Unreviewed

CVE-2024-13824 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-11284 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to,... Critical Unreviewed

CVE-2024-11286 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-11285 was published Mar 14, 2025

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1... Critical Unreviewed

CVE-2025-2080 was published Mar 13, 2025

During login to the web server in "Sante PACS Server.exe", OpenSSL function EVP_DecryptUpdate is... Critical Unreviewed

CVE-2025-2263 was published Mar 13, 2025

CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could... Critical Unreviewed

CVE-2025-1960 was published Mar 12, 2025

A command injection vulnerability exists in the /check_image_and_trigger_recovery API endpoint of... Critical Unreviewed

CVE-2024-13871 was published Mar 12, 2025

Bitdefender Box, versions 1.3.11.490 through 1.3.11.505, uses the insecure HTTP protocol to... Critical Unreviewed

CVE-2024-13872 was published Mar 12, 2025

The Workreap plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-13446 was published Mar 12, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Theme Egg ThemeEgg ToolKit... Critical Unreviewed

CVE-2025-28915 was published Mar 11, 2025

An issue was discovered in Percona PMM Server (OVA) before 3.0.0-1.ova. The default service... Critical Unreviewed

CVE-2025-26701 was published Mar 11, 2025

AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication... Critical Unreviewed

CVE-2024-54085 was published Mar 11, 2025

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9),... Critical Unreviewed

CVE-2025-27494 was published Mar 11, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,644 advisories