Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,371 advisories

Loading
In createIntentsList of PackageParser.java , there is a possible way to bypass lazy bundle... High Unreviewed
CVE-2025-32312 was published Sep 5, 2025
Deserialization of Untrusted Data vulnerability in aThemeArt Translations eDS Responsive Menu... High Unreviewed
CVE-2025-58839 was published Sep 5, 2025
Deserialization of Untrusted Data vulnerability in Rubel Miah Aitasi Coming Soon allows Object... High Unreviewed
CVE-2025-58815 was published Sep 5, 2025
Deserialization of Untrusted Data vulnerability in Sitecore Experience Manager (XM), Sitecore... Critical Unreviewed
CVE-2025-53690 was published Sep 5, 2025
In assertSafeToStartCustomActivity of AppRestrictionsFragment.java , there is a possible way to... High Unreviewed
CVE-2025-48535 was published Sep 4, 2025
Deserialization of Untrusted Data vulnerability in enituretechnology LTL Freight Quotes – Day &... High Unreviewed
CVE-2025-58642 was published Sep 3, 2025
Deserialization of Untrusted Data vulnerability in enituretechnology LTL Freight Quotes - TQL... High Unreviewed
CVE-2025-58644 was published Sep 3, 2025
Deserialization of Untrusted Data vulnerability in enituretechnology LTL Freight Quotes –... High Unreviewed
CVE-2025-58643 was published Sep 3, 2025
Deserialization of Untrusted Data vulnerability in Sitecore Experience Manager (XM), Sitecore... High Unreviewed
CVE-2025-53691 was published Sep 3, 2025
The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin... Moderate Unreviewed
CVE-2025-9260 was published Sep 3, 2025
Anritsu ShockLine CHX File Parsing Deserialization of Untrusted Data Remote Code Execution... High Unreviewed
CVE-2025-7976 was published Sep 2, 2025
There is a deserialization of untrusted data vulnerability in Digilent DASYLab. This... High Unreviewed
CVE-2025-9188 was published Sep 2, 2025
Deserialization of Untrusted Data vulnerability in magepeopleteam WpEvently allows Object... High Unreviewed
CVE-2025-54742 was published Aug 28, 2025
Deserialization of Untrusted Data vulnerability in emarket-design WP Ticket Customer Service... High Unreviewed
CVE-2025-53584 was published Aug 28, 2025
Deserialization of Untrusted Data vulnerability in emarket-design WP Easy Contact allows Object... High Unreviewed
CVE-2025-53572 was published Aug 28, 2025
Deserialization of Untrusted Data vulnerability in emarket-design Employee Spotlight allows... High Unreviewed
CVE-2025-53583 was published Aug 28, 2025
Deserialization of Untrusted Data vulnerability in emarket-design Employee Directory – Staff... High Unreviewed
CVE-2025-53243 was published Aug 28, 2025
Deserialization of Untrusted Data vulnerability in manfcarlo WP Funnel Manager allows Object... Critical Unreviewed
CVE-2025-52761 was published Aug 28, 2025
H3C Intelligent Management Center (IMC) versions up to and including E0632H07 contains a remote... Critical Unreviewed
CVE-2024-13980 was published Aug 28, 2025
Deserialization of Untrusted Data vulnerability in enituretechnology Small Package Quotes – USPS... High Unreviewed
CVE-2025-58218 was published Aug 27, 2025
Mahara 21.10 before 21.10.6, 22.04 before 22.04.4, and 22.10 before 22.10.1 deserializes user... Critical Unreviewed
CVE-2022-45134 was published Aug 22, 2025
OperaMasks SDK ELite Script Engine v0.5.0 was discovered to contain a deserialization vulnerability. High Unreviewed
CVE-2025-52287 was published Aug 22, 2025
CWE-502: Deserialization of Untrusted Data vulnerability exists that could cause remote code... High Unreviewed
CVE-2025-54923 was published Aug 20, 2025
Deserialization of Untrusted Data vulnerability in QuanticaLabs MediCenter - Health Medical... Critical Unreviewed
CVE-2025-54014 was published Aug 20, 2025
Deserialization of Untrusted Data vulnerability in nanbu Welcart e-Commerce allows Object... High Unreviewed
CVE-2025-54012 was published Aug 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database