Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,984
Erlang
39
GitHub Actions
38
Go
2,626
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
954
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,989 advisories

Loading
A vulnerability, which was classified as critical, was found in D-Link DI-7300G+ and DI-8200G 17... Moderate Unreviewed
CVE-2025-6899 was published Jun 30, 2025
A vulnerability classified as critical has been found in D-Link DI-7300G+ 19.12.25A1. Affected is... Moderate Unreviewed
CVE-2025-6896 was published Jun 30, 2025
A vulnerability classified as critical was found in D-Link DI-7300G+ 19.12.25A1. Affected by this... Moderate Unreviewed
CVE-2025-6897 was published Jun 30, 2025
A vulnerability, which was classified as critical, has been found in D-Link DI-7300G+ 19.12.25A1.... Moderate Unreviewed
CVE-2025-6898 was published Jun 30, 2025
Unauthenticated users on an adjacent network with the Sight Bulb Pro can run shell commands as... Moderate Unreviewed
CVE-2025-6522 was published Jun 27, 2025
filebrowser Allows Shell Commands to Spawn Other Commands High
CVE-2025-52903 was published for github.com/filebrowser/filebrowser (Go) Jun 27, 2025
mtausig hacdias
Credited to mtausig and hacdias
Improper Neutralization of Special Elements in the Netflow directory field may allow OS command... High Unreviewed
CVE-2025-5306 was published Jun 27, 2025
A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been classified as critical.... Moderate Unreviewed
CVE-2025-6618 was published Jun 26, 2025
A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been declared as critical.... Moderate Unreviewed
CVE-2025-6619 was published Jun 26, 2025
A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been rated as critical. Affected... Moderate Unreviewed
CVE-2025-6620 was published Jun 26, 2025
A vulnerability classified as critical has been found in TOTOLINK CA300-PoE 6.2c.884. This... Moderate Unreviewed
CVE-2025-6621 was published Jun 26, 2025
A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been classified as... Moderate Unreviewed
CVE-2025-6485 was published Jun 22, 2025
A vulnerability classified as critical has been found in TOTOLINK N150RT 3.4.0-B20190525. This... Moderate Unreviewed
CVE-2025-6299 was published Jun 20, 2025
The Versa Director SD-WAN orchestration platform includes functionality to initiate SSH sessions... Moderate Unreviewed
CVE-2025-23170 was published Jun 19, 2025
A vulnerability, which was classified as critical, was found in Wifi-soft UniBox Controller up to... High Unreviewed
CVE-2025-6104 was published Jun 16, 2025
A vulnerability classified as critical was found in Wifi-soft UniBox Controller up to 20250506.... High Unreviewed
CVE-2025-6102 was published Jun 16, 2025
A vulnerability, which was classified as critical, has been found in Wifi-soft UniBox Controller... High Unreviewed
CVE-2025-6103 was published Jun 16, 2025
Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed
CVE-2025-45988 was published Jun 13, 2025
Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed
CVE-2025-45986 was published Jun 13, 2025
Blink routers BL-WR9000 V2.4.9, BL-AC1900 V1.0.2, BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 V1.0.5, BL... Critical Unreviewed
CVE-2025-45984 was published Jun 13, 2025
Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed
CVE-2025-45987 was published Jun 13, 2025
Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed
CVE-2025-45985 was published Jun 13, 2025
Salt's on demand pillar functionality vulnerable to arbitrary command injections Moderate
CVE-2025-22237 was published for salt (pip) Jun 13, 2025
Improper neutralization of special elements used in a command ('command injection') in Visual... High Unreviewed
CVE-2025-47959 was published Jun 13, 2025
A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated... High Unreviewed
CVE-2025-4231 was published Jun 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database