GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,672
Composer 4,466
Erlang 33
GitHub Actions 23
Go 2,167
Maven 5,398
npm 3,830
NuGet 696
pip 3,508
Pub 12
RubyGems 910
Rust 906
Swift 38

Unreviewed advisories

All unreviewed 247,876

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,644 advisories

Filter by severity

Sort by

Least recently updated

Tenda AC8v4 V16.03.34.06 has a stack overflow vulnerability in the fromAdvSetMacMtuWan function. Critical Unreviewed

CVE-2024-46652 was published Sep 20, 2024

Mattermost Desktop App versions <=5.10.0 explicitly declared unnecessary macOS entitlements which... Critical Unreviewed

CVE-2025-1398 was published Mar 17, 2025

Tenda AC10 V1.0 V15.03.06.23 has a command injection vulnerablility located in the formexeCommand... Critical Unreviewed

CVE-2025-25675 was published Feb 21, 2025

Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the shareSpeed parameter... Critical Unreviewed

CVE-2025-25664 was published Feb 21, 2025

A vulnerability was found in Tenda AC8V4 V16.03.34.06. Affected is the function SUB_0046AC38 of... Critical Unreviewed

CVE-2025-25663 was published Feb 21, 2025

Vulnerability in the Oracle Hospitality Simphony product of Oracle Food and Beverage Applications... Critical Unreviewed

CVE-2024-21010 was published Apr 17, 2024

SQL injection vulnerability in the Innovación y Cualificación local administration plugin ajax... Critical Unreviewed

CVE-2025-2199 was published Mar 17, 2025

QL injection vulnerability in the IcProgreso Innovación y Cualificación plugin. This... Critical Unreviewed

CVE-2025-2200 was published Mar 17, 2025

The U-Office Force from e-Excellence has an Improper Authentication vulnerability, allowing... Critical Unreviewed

CVE-2025-2395 was published Mar 17, 2025

A vulnerability, which was classified as very critical, was found in IROAD Dash Cam X5 and Dash... Critical Unreviewed

CVE-2025-2345 was published Mar 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-26875 was published Mar 16, 2025

Local file inclusion in Automatic Systems Maintenance SlimLane... Critical Unreviewed

CVE-2024-48823 was published Oct 14, 2024

The Traveler theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and... Critical Unreviewed

CVE-2025-1771 was published Mar 15, 2025

A mismatch between allocator and deallocator could have lead to memory corruption. This... Critical Unreviewed

CVE-2024-6602 was published Jul 9, 2024

Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP... Critical Unreviewed

CVE-2022-46637 was published Feb 21, 2023

In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based... Critical Unreviewed

CVE-2023-26253 was published Feb 21, 2023

A lack of rate limiting on the password reset endpoint of Chamberlain myQ v5.222.0.32277 (on iOS)... Critical Unreviewed

CVE-2023-24080 was published Feb 22, 2023

An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length... Critical Unreviewed

CVE-2024-45490 was published Aug 30, 2024

In the CryptX module before 0.062 for Perl, gcm_decrypt_verify() and... Critical Unreviewed

CVE-2018-25099 was published Mar 18, 2024

SQL Injection Vulnerability in tanujpatra228 Tution Management System (TMS) via the email... Critical Unreviewed

CVE-2022-45677 was published Feb 21, 2023

A logic vulnerability in the the mobile application (com.transsion.applock) can lead to bypassing... Critical Unreviewed

CVE-2024-12603 was published Dec 13, 2024

An issue was discovered in vesoft NebulaGraph through 3.8.0. It allows shell command injection. Critical Unreviewed

CVE-2024-47219 was published Sep 22, 2024

Tenda FH1205 v2.0.0.7(775) has a stack overflow vulnerability in the page parameter from... Critical Unreviewed

CVE-2024-30628 was published Mar 29, 2024

OS command injection vulnerability exists in awkblog v0.0.1 (commit hash... Critical Unreviewed

CVE-2024-36360 was published Jun 11, 2024

VMware Workstation and Fusion contain a use-after-free vulnerability in the vbluetooth device. A... Critical Unreviewed

CVE-2024-22267 was published May 14, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,644 advisories