Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,989 advisories

Loading
Multiple Code Injection vulnerabilities in EasyVirt DC NetScope <= 8.7.0 allows remote... High Unreviewed
CVE-2024-55063 was published May 19, 2025
The ChatGPT system through 2025-03-30 performs inline rendering of SVG documents (instead of, for... Moderate Unreviewed
CVE-2025-43714 was published May 19, 2025
A vulnerability classified as critical was found in TOTOLINK N300RH 6.1c.1390_B20191101. This... Moderate Unreviewed
CVE-2025-4851 was published May 18, 2025
A vulnerability classified as critical has been found in TOTOLINK N300RH 6.1c.1390_B20191101.... Moderate Unreviewed
CVE-2025-4850 was published May 18, 2025
A vulnerability was found in TOTOLINK N300RH 6.1c.1390_B20191101. It has been rated as critical.... Moderate Unreviewed
CVE-2025-4849 was published May 18, 2025
Improper neutralization of special elements used in a command ('command injection') in Visual... High Unreviewed
CVE-2025-32702 was published May 13, 2025
An arbitrary file upload vulnerability in the Image Gallery of ThingsBoard Community, ThingsBoard... Moderate Unreviewed
CVE-2024-55466 was published May 12, 2025
Tenda FH451 V1.0.0.9 is vulnerable to Remote Code Execution in the formSafeEmailFilter function. Moderate Unreviewed
CVE-2025-44176 was published May 12, 2025
IBM Storage Scale 5.2.2.0 and 5.2.2.1, under certain configurations, could allow an authenticated... High Unreviewed
CVE-2025-1137 was published May 10, 2025
Jan v0.5.14 and before is vulnerable to remote code execution (RCE) when the user clicks on a... Critical Unreviewed
CVE-2025-29509 was published May 9, 2025
EnerSys AMPA 22.09 and prior versions are vulnerable to command injection leading to privileged... Critical Unreviewed
CVE-2024-11861 was published May 9, 2025
EnerSys AMPA versions 24.04 through 24.16, inclusive, are vulnerable to command injection leading... Critical Unreviewed
CVE-2024-12442 was published May 9, 2025
A vulnerability was found in D-Link DIR-619L 2.04B04. It has been classified as critical. This... Moderate Unreviewed
CVE-2025-4453 was published May 9, 2025
A vulnerability was found in D-Link DIR-619L 2.04B04. It has been declared as critical. This... Moderate Unreviewed
CVE-2025-4454 was published May 9, 2025
A vulnerability was found in D-Link DIR-605L 2.13B01. It has been rated as critical. This issue... Moderate Unreviewed
CVE-2025-4443 was published May 9, 2025
A vulnerability classified as critical has been found in D-Link DIR-605L 2.13B01. Affected is the... Moderate Unreviewed
CVE-2025-4445 was published May 9, 2025
An issue in dlink DNS-320 v.1.00 and DNS-320LW v.1.01.0914.20212 allows an attacker to execute... Moderate Unreviewed
CVE-2025-44023 was published May 8, 2025
A command execution vulnerability exists in the TOTOLINK A950RG V4.1.2cu.5204_B20210112. The... Moderate Unreviewed
CVE-2025-45798 was published May 8, 2025
PHPJabbers Event Booking Calendar v4.0 is vulnerable to Multiple HTML Injection in the "name,... Moderate Unreviewed
CVE-2023-51295 was published May 8, 2025
When running in Appliance mode, a command injection vulnerability exists in an undisclosed... High Unreviewed
CVE-2025-31644 was published May 8, 2025
HTML injection vulnerability in lemeconsultoria HCM galera.app v.4.58.0 allows an attacker to... Moderate Unreviewed
CVE-2025-29154 was published May 7, 2025
Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper... Moderate Unreviewed
CVE-2025-22476 was published May 6, 2025
An issue in the component /internals/functions of R-fx Networks Linux Malware Detect v1.6.5... Moderate Unreviewed
CVE-2025-26262 was published May 6, 2025
Netgear EX8000 V1.0.0.126 is vulnerable to Command Injection via the Iface parameter in the... Moderate Unreviewed
CVE-2025-45492 was published May 6, 2025
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... Moderate Unreviewed
CVE-2025-45488 was published May 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database