GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,372 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to... High Unreviewed

CVE-2024-28777 was published Feb 19, 2025

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an... High Unreviewed

CVE-2024-45084 was published Feb 19, 2025

The Brooklyn theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and... High Unreviewed

CVE-2024-13636 was published Feb 18, 2025

The Affiliate Links: WordPress Plugin for Link Cloaking and Link Management plugin for WordPress... High Unreviewed

CVE-2024-13556 was published Feb 18, 2025

The s2Member Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions up to... Critical Unreviewed

CVE-2024-12562 was published Feb 15, 2025

The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is... High Unreviewed

CVE-2024-13770 was published Feb 13, 2025

A vulnerability was found in dayrui XunRuiCMS up to 4.6.4. It has been declared as critical. This... Moderate Unreviewed

CVE-2025-1186 was published Feb 12, 2025

A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected... Moderate Unreviewed

CVE-2025-1177 was published Feb 11, 2025

Utilization of a module presented a security risk by allowing the deserialization of untrusted... Moderate Unreviewed

CVE-2021-27017 was published Feb 7, 2025

The WP All Import Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions... High Unreviewed

CVE-2024-9664 was published Feb 7, 2025

Trimble Cityworks versions prior to 15.8.9 and Cityworks with office companion versions prior to... High Unreviewed

CVE-2025-0994 was published Feb 6, 2025

A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker to execute... Critical Unreviewed

CVE-2025-20124 was published Feb 5, 2025

Deserialization of Untrusted Data vulnerability in MagePeople Team Taxi Booking Manager for... Critical Unreviewed

CVE-2025-24661 was published Feb 3, 2025

The iControlWP – Multiple WordPress Site Manager plugin for WordPress is vulnerable to PHP Object... Critical Unreviewed

CVE-2024-13742 was published Jan 30, 2025

NVIDIA RAPIDS contains a vulnerability in cuDF and cuML, where a user could cause a... Moderate Unreviewed

CVE-2024-0140 was published Jan 28, 2025

A vulnerability has been found in y_project RuoYi up to 4.8.0 and classified as critical. This... Moderate Unreviewed

CVE-2025-0734 was published Jan 27, 2025

Deserialization of Untrusted Data vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows... Critical Unreviewed

CVE-2025-24671 was published Jan 27, 2025

Deserialization of Untrusted Data vulnerability in ThimPress FundPress allows Object Injection.... Critical Unreviewed

CVE-2025-24601 was published Jan 27, 2025

The Custom Product Tabs Lite for WooCommerce plugin for WordPress is vulnerable to PHP Object... High Unreviewed

CVE-2024-12600 was published Jan 25, 2025

Pre-authentication deserialization of untrusted data vulnerability has been identified in the... Critical Unreviewed

CVE-2025-23006 was published Jan 23, 2025

Deserialization of Untrusted Data vulnerability in NotFound Muzaara Google Ads Report allows... Critical Unreviewed

CVE-2025-23914 was published Jan 22, 2025

IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2... High Unreviewed

CVE-2024-31903 was published Jan 22, 2025

Deserialization of Untrusted Data vulnerability in WOOEXIM.COM WOOEXIM allows Object Injection.... High Unreviewed

CVE-2025-23944 was published Jan 22, 2025

Deserialization of Untrusted Data vulnerability in NotFound Quick Count allows Object Injection.... Critical Unreviewed

CVE-2025-23932 was published Jan 22, 2025

The "AI Power: Complete AI Pack" plugin for WordPress is vulnerable to PHP Object Injection in... High Unreviewed

CVE-2025-0429 was published Jan 22, 2025

Previous 1…15…55 Next

Previous 1 2 … 13 14 15 16 17 … 54 55 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,372 advisories