Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,614 advisories

Loading
An arbitrary file upload vulnerability in the Image Gallery of ThingsBoard Community, ThingsBoard... Moderate Unreviewed
CVE-2024-55466 was published May 12, 2025
Tenda FH451 V1.0.0.9 is vulnerable to Remote Code Execution in the formSafeEmailFilter function. Moderate Unreviewed
CVE-2025-44176 was published May 12, 2025
IBM Storage Scale 5.2.2.0 and 5.2.2.1, under certain configurations, could allow an authenticated... High Unreviewed
CVE-2025-1137 was published May 10, 2025
Jan v0.5.14 and before is vulnerable to remote code execution (RCE) when the user clicks on a... Critical Unreviewed
CVE-2025-29509 was published May 9, 2025
EnerSys AMPA 22.09 and prior versions are vulnerable to command injection leading to privileged... Critical Unreviewed
CVE-2024-11861 was published May 9, 2025
EnerSys AMPA versions 24.04 through 24.16, inclusive, are vulnerable to command injection leading... Critical Unreviewed
CVE-2024-12442 was published May 9, 2025
A vulnerability was found in D-Link DIR-619L 2.04B04. It has been classified as critical. This... Moderate Unreviewed
CVE-2025-4453 was published May 9, 2025
A vulnerability was found in D-Link DIR-619L 2.04B04. It has been declared as critical. This... Moderate Unreviewed
CVE-2025-4454 was published May 9, 2025
A vulnerability was found in D-Link DIR-605L 2.13B01. It has been rated as critical. This issue... Moderate Unreviewed
CVE-2025-4443 was published May 9, 2025
A vulnerability classified as critical has been found in D-Link DIR-605L 2.13B01. Affected is the... Moderate Unreviewed
CVE-2025-4445 was published May 9, 2025
An issue in dlink DNS-320 v.1.00 and DNS-320LW v.1.01.0914.20212 allows an attacker to execute... Moderate Unreviewed
CVE-2025-44023 was published May 8, 2025
A command execution vulnerability exists in the TOTOLINK A950RG V4.1.2cu.5204_B20210112. The... Moderate Unreviewed
CVE-2025-45798 was published May 8, 2025
PHPJabbers Event Booking Calendar v4.0 is vulnerable to Multiple HTML Injection in the "name,... Moderate Unreviewed
CVE-2023-51295 was published May 8, 2025
When running in Appliance mode, a command injection vulnerability exists in an undisclosed... High Unreviewed
CVE-2025-31644 was published May 8, 2025
HTML injection vulnerability in lemeconsultoria HCM galera.app v.4.58.0 allows an attacker to... Moderate Unreviewed
CVE-2025-29154 was published May 7, 2025
An issue in the component /internals/functions of R-fx Networks Linux Malware Detect v1.6.5... Moderate Unreviewed
CVE-2025-26262 was published May 6, 2025
Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper... Moderate Unreviewed
CVE-2025-22476 was published May 6, 2025
Netgear EX8000 V1.0.0.126 is vulnerable to Command Injection via the Iface parameter in the... Moderate Unreviewed
CVE-2025-45492 was published May 6, 2025
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... Moderate Unreviewed
CVE-2025-45488 was published May 6, 2025
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... Moderate Unreviewed
CVE-2025-45490 was published May 6, 2025
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... Moderate Unreviewed
CVE-2025-45487 was published May 6, 2025
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... Critical Unreviewed
CVE-2025-45491 was published May 6, 2025
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... Moderate Unreviewed
CVE-2025-45489 was published May 6, 2025
A vulnerability was found in Tenda RX3 16.03.13.11_multi. It has been rated as critical. This... Moderate Unreviewed
CVE-2025-4357 was published May 6, 2025
A vulnerability classified as critical has been found in D-Link DIR-600L up to 2.07B01. This... High Unreviewed
CVE-2025-4349 was published May 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database