GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,588

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,436 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204... High Unreviewed

CVE-2025-6558 was published Jul 15, 2025

An unauthenticated arbitrary file upload vulnerability exists in Tiki Wiki CMS Groupware version... Critical Unreviewed

CVE-2025-34111 was published Jul 15, 2025

A stack-based buffer overflow vulnerability exists in the login functionality of Disk Pulse... High Unreviewed

CVE-2025-34108 was published Jul 15, 2025

A remote command execution vulnerability exists in IPFire before version 2.19 Core Update 101 via... High Unreviewed

CVE-2025-34116 was published Jul 15, 2025

An authenticated command injection vulnerability exists in Tiki Wiki CMS versions ≤14.1, ≤12.4... High Unreviewed

CVE-2025-34113 was published Jul 15, 2025

An authenticated command injection vulnerability exists in OP5 Monitor through version 7.1.9 via... High Unreviewed

CVE-2025-34115 was published Jul 15, 2025

A stack-based buffer overflow vulnerability exists in the built-in web interface of DiskBoss... Critical Unreviewed

CVE-2025-34105 was published Jul 15, 2025

An unauthenticated remote command execution vulnerability exists in Samsung WLAN AP WEA453e... Critical Unreviewed

CVE-2025-34068 was published Jul 15, 2025

Improper input validation in Microsoft Edge (Chromium-based) allows an authorized attacker to... Moderate Unreviewed

CVE-2025-47182 was published Jul 11, 2025

When passing values outside of the expected range to QColorTransferGenericFunction it can cause a... Low Unreviewed

CVE-2025-5992 was published Jul 11, 2025

Emerson ValveLink products receive input or data, but it do not validate or incorrectly ... Moderate Unreviewed

CVE-2025-53471 was published Jul 11, 2025

An unauthenticated command injection vulnerability exists in VICIdial versions 2.9 RC1 through 2... Critical Unreviewed

CVE-2025-34099 was published Jul 10, 2025

An unauthenticated command injection vulnerability exists in Serviio Media Server versions 1.4... Critical Unreviewed

CVE-2025-34101 was published Jul 10, 2025

An unrestricted file upload vulnerability exists in BuilderEngine 3.5.0 via the integration of... Critical Unreviewed

CVE-2025-34100 was published Jul 10, 2025

A remote code execution vulnerability exists in CryptoLog (PHP version, discontinued since 2009)... Critical Unreviewed

CVE-2025-34102 was published Jul 10, 2025

HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate... High Unreviewed

CVE-2024-42516 was published Jul 10, 2025

A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE... High Unreviewed

CVE-2025-6376 was published Jul 9, 2025

A remote code execution security issue exists in the Rockwell Automation Arena®. A crafted DOE... High Unreviewed

CVE-2025-6377 was published Jul 9, 2025

Realtek RTL8762EKF-EVB RTL8762E SDK V1.4.0 was discovered to utilize insufficient permission... Moderate Unreviewed

CVE-2025-44526 was published Jul 9, 2025

An improper Input Validation vulnerability allows injecting arbitrary values of the NAS... Moderate Unreviewed

CVE-2025-7378 was published Jul 9, 2025

A vulnerability, which was classified as critical, was found in lty628 Aidigu up to 1.8.2. This... Moderate Unreviewed

CVE-2025-7216 was published Jul 9, 2025

An unrestricted file upload vulnerability exists in the WordPress AIT CSV Import/Export plugin ≤... Critical Unreviewed

CVE-2025-34083 was published Jul 9, 2025

Improper input validation in SQL Server allows an unauthorized attacker to disclose information... High Unreviewed

CVE-2025-49719 was published Jul 8, 2025

Improper input validation in Windows Storage VSP Driver allows an authorized attacker to elevate... High Unreviewed

CVE-2025-47982 was published Jul 8, 2025

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0). The affected... High Unreviewed

CVE-2025-40593 was published Jul 8, 2025

Previous 1…8…400 Next

Previous 1 2 … 6 7 8 9 10 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,436 advisories