Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,053
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

300,920 advisories

Loading
MQTT does not validate hostnames High
CVE-2025-12790 was published for mqtt (RubyGems) Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain a command injection vulnerability in... High Unreviewed
CVE-2025-34239 was published Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in... Moderate Unreviewed
CVE-2025-34241 was published Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain a stored cross-site scripting (XSS)... Moderate Unreviewed
CVE-2025-34236 was published Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in... High Unreviewed
CVE-2025-34242 was published Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in... High Unreviewed
CVE-2025-34240 was published Nov 6, 2025
Netgate pfSense CE Suricata Path Traversal Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-12490 was published Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain a stored cross-site scripting (XSS)... Moderate Unreviewed
CVE-2025-34237 was published Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain an absolute path traversal via... Moderate Unreviewed
CVE-2025-34238 was published Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in... Moderate Unreviewed
CVE-2025-34244 was published Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain a SQL injection vulnerability in... Moderate Unreviewed
CVE-2025-34243 was published Nov 6, 2025
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP... High Unreviewed
CVE-2022-50591 was published Nov 6, 2025
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP... Critical Unreviewed
CVE-2022-50592 was published Nov 6, 2025
SuiteCRM versions prior to 7.12.6 contain a SQL injection vulnerability within the processing of... Critical Unreviewed
CVE-2022-50589 was published Nov 6, 2025
SuiteCRM versions prior to 7.12.6 contain a type confusion vulnerability within the processing of... High Unreviewed
CVE-2022-50590 was published Nov 6, 2025
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP... High Unreviewed
CVE-2022-50594 was published Nov 6, 2025
Dell Integrated Dell Remote Access Controller 9, 14G versions prior to 7.00.00.181, 15G and 16G... Moderate Unreviewed
CVE-2025-22397 was published Nov 6, 2025
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP... Critical Unreviewed
CVE-2022-50595 was published Nov 6, 2025
D-Link DIR-1260 Wi-Fi router firmware versions up to and including v1.20B05 contain a command... Critical Unreviewed
CVE-2022-50596 was published Nov 6, 2025
Advantech iView versions prior to v5.7.04 build 6425 contain a vulnerability within the SNMP... Critical Unreviewed
CVE-2022-50593 was published Nov 6, 2025
A Server-Side Request Forgery (SSRF) in the /api/proxy/ component of linshenkx prompt-optimizer... High Unreviewed
CVE-2025-60541 was published Nov 6, 2025
A Server-Side Request Forgery (SSRF) vulnerability, achievable through an XML External Entity ... High Unreviewed
CVE-2025-63551 was published Nov 6, 2025
An issue was discovered in AnyDesk before 9.0.0. It has an integer overflow and resultant heap... Critical Unreviewed
CVE-2025-27918 was published Nov 6, 2025
An issue was discovered in AnyDesk through 9.0.4. Remote Denial of Service can occur because of... High Unreviewed
CVE-2025-27917 was published Nov 6, 2025
An issue was discovered in AnyDesk through 9.0.4. When the connection between two clients is... High Unreviewed
CVE-2025-27916 was published Nov 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database