GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,442

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

617 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability, which was classified as critical, was found in Tenda AC7 1200M 15.03.06.44.... Moderate Unreviewed

CVE-2025-1819 was published Mar 2, 2025

A vulnerability has been found in D-Link DAR-7000 3.2 and classified as critical. This... Moderate Unreviewed

CVE-2025-1800 was published Mar 1, 2025

A vulnerability in the CLI of Cisco APIC could allow an authenticated, local attacker to execute... Moderate Unreviewed

CVE-2025-20117 was published Feb 26, 2025

A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1.... Moderate Unreviewed

CVE-2025-1676 was published Feb 25, 2025

An issue in sparkshop v.1.1.7 and before allows a remote attacker to execute arbitrary code via a... Moderate Unreviewed

CVE-2024-57685 was published Feb 25, 2025

An issue in Via Browser 6.1.0 allows a a remote attacker to execute arbitrary code via the mark... Moderate Unreviewed

CVE-2024-57608 was published Feb 25, 2025

A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU... Moderate Unreviewed

CVE-2025-1616 was published Feb 24, 2025

A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by... Moderate Unreviewed

CVE-2025-1610 was published Feb 24, 2025

A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical.... Moderate Unreviewed

CVE-2025-1609 was published Feb 24, 2025

A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2.... Moderate Unreviewed

CVE-2025-1608 was published Feb 24, 2025

MRCMS v3.1.2 was discovered to contain a server-side template injection (SSTI) vulnerability in... Moderate Unreviewed

CVE-2025-25768 was published Feb 21, 2025

Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the... Moderate Unreviewed

CVE-2025-25605 was published Feb 21, 2025

Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable... Moderate Unreviewed

CVE-2025-25604 was published Feb 21, 2025

A vulnerability has been found in BDCOM Behavior Management and Auditing System up to 20250210... Moderate Unreviewed

CVE-2025-1546 was published Feb 21, 2025

An arbitrary file upload vulnerability in the component /file/savefile.do of MRCMS v3.1.2 allows... Moderate Unreviewed

CVE-2025-25766 was published Feb 21, 2025

A vulnerability was found in Raisecom Multi-Service Intelligent Gateway up to 20250208. It has... Moderate Unreviewed

CVE-2025-1536 was published Feb 21, 2025

A vulnerability, which was classified as critical, has been found in MicroWorld eScan Antivirus 7... Moderate Unreviewed

CVE-2025-1370 was published Feb 17, 2025

A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. It has been rated as critical.... Moderate Unreviewed

CVE-2025-1339 was published Feb 16, 2025

A vulnerability classified as critical was found in olajowon Loggrove up to... Moderate Unreviewed

CVE-2025-1229 was published Feb 13, 2025

An issue in Team Amaze Amaze File Manager v.3.8.5 and fixed in v.3.10 allows a local attacker to... Moderate Unreviewed

CVE-2024-33469 was published Feb 12, 2025

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure... Moderate Unreviewed

CVE-2025-20184 was published Feb 5, 2025

files.photo.gallery command injection Moderate

CVE-2024-53615 was published for files.photo.gallery (npm) Jan 30, 2025

ECOVACS robot lawnmowers and vacuums are vulnerable to command injection via SetNetPin() over an... Moderate Unreviewed

CVE-2024-52325 was published Jan 23, 2025

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... Moderate Unreviewed

CVE-2024-57212 was published Jan 10, 2025

TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... Moderate Unreviewed

CVE-2024-57213 was published Jan 10, 2025

Previous 1…12…25 Next

Previous 1 2 … 10 11 12 13 14 … 24 25 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

617 advisories