GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,562
Composer 4,986
Erlang 39
GitHub Actions 38
Go 2,626
Maven 6,103
npm 4,258
NuGet 760
pip 4,051
Pub 12
RubyGems 954
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,266

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,998 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Deserialization of Untrusted Data vulnerability in wpshuffle Subscribe to Download subscribe-to... Moderate Unreviewed

CVE-2025-60224 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in wpeverest Everest Forms - Frontend Listing... Moderate Unreviewed

CVE-2025-60210 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in designthemes Kriya kriya allows Object... Moderate Unreviewed

CVE-2025-60215 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in designthemes VEDA veda allows Object Injection... High Unreviewed

CVE-2025-60212 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in CRM Perks Connector for Gravity Forms and... High Unreviewed

CVE-2025-60209 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in Whitebox-Studio Scape scape allows Object... Critical Unreviewed

CVE-2025-60213 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in captivateaudio Captivate Sync captivatesync... Moderate Unreviewed

CVE-2025-60221 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in AncoraThemes BugsPatrol bugspatrol allows... Critical Unreviewed

CVE-2025-60225 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in BoldThemes Goldenblatt goldenblatt allows... Critical Unreviewed

CVE-2025-60214 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in BoldThemes Addison addison allows Object... Moderate Unreviewed

CVE-2025-60216 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in quantumcloud KBx Pro Ultimate knowledgebase... Critical Unreviewed

CVE-2025-60232 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in designthemes Single Property single-property... High Unreviewed

CVE-2025-60234 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in universam UNIVERSAM universam-demo allows... Critical Unreviewed

CVE-2025-60238 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in themesflat TF Woo Product Grid Addon For... High Unreviewed

CVE-2025-59007 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in rascals Noisa noisa allows Object Injection... Critical Unreviewed

CVE-2025-60039 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in Hernan Villanueva Boldermail boldermail allows... High Unreviewed

CVE-2025-52740 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in Tijmen Smit WP Store Locator wp-store-locator... High Unreviewed

CVE-2025-52737 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in wpinstinct WooCommerce Vehicle Parts Finder... Moderate Unreviewed

CVE-2025-49380 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in designthemes Insurance insurance allows Object... Moderate Unreviewed

CVE-2025-31634 was published Oct 22, 2025

Deserialization of Untrusted Data vulnerability in designthemes Solar Energy solar allows Object... Moderate Unreviewed

CVE-2025-32283 was published Oct 22, 2025

A vulnerability was found in ChurchCRM up to 5.18.0. This vulnerability affects unknown code of... Moderate Unreviewed

CVE-2025-11938 was published Oct 19, 2025

The Appointments plugin for WordPress is vulnerable to PHP Object Injection in versions up to,... Critical Unreviewed

CVE-2017-20206 was published Oct 18, 2025

The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login... Critical Unreviewed

CVE-2017-20208 was published Oct 18, 2025

The Flickr Gallery plugin for WordPress is vulnerable to PHP Object Injection in versions up to,... Critical Unreviewed

CVE-2017-20207 was published Oct 18, 2025

Keras framework vulnerable to deserialization of untrusted data Critical

CVE-2025-49655 was published for keras (pip) Oct 17, 2025

Previous 12…80 Next

Previous 1 2 3 4 5 … 79 80 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,998 advisories