GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,574

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,612 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via accessing a... Moderate Unreviewed

CVE-2025-29157 was published Sep 25, 2025

An issue in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via the DELETE... Moderate Unreviewed

CVE-2025-29155 was published Sep 25, 2025

A vulnerability in the HTTP API subsystem of Cisco IOS XE Software could allow a remote attacker... High Unreviewed

CVE-2025-20334 was published Sep 24, 2025

An issue in PocketVJ CP PocketVJ-CP-v3 pvj 3.9.1 allows remote attackers to execute arbitrary... Moderate Unreviewed

CVE-2025-45326 was published Sep 23, 2025

SQL Injection vulnerability in CSZ-CMS v.1.3.0 allows a remote attacker to execute arbitrary code... Moderate Unreviewed

CVE-2025-29083 was published Sep 23, 2025

The LB-Link routers, including the BL-AC2100_AZ3 V1.0.4, BL-WR4000 v2.5.0, BL-WR9000_AE4 v2.4.9,... Moderate Unreviewed

CVE-2025-57685 was published Sep 22, 2025

A weakness has been identified in Ruijie 6000-E10 up to 2.4.3.6-20171117. This affects an unknown... Moderate Unreviewed

CVE-2025-10774 was published Sep 22, 2025

Tenda AC6 router firmware 15.03.05.19 contains a command injection vulnerability in the... Moderate Unreviewed

CVE-2025-57296 was published Sep 22, 2025

In 2wcom IP-4c 2.16, the web interface allows admin and manager users to execute arbitrary code... High Unreviewed

CVE-2025-43953 was published Sep 22, 2025

A security vulnerability has been detected in Wavlink WL-NU516U1 240425. This vulnerability... Moderate Unreviewed

CVE-2025-10775 was published Sep 22, 2025

A vulnerability was detected in CosmodiumCS OnlyRAT up to 3.2. The affected element is the... Low Unreviewed

CVE-2025-10767 was published Sep 22, 2025

Libraesva ESG 4.5 through 5.5.x before 5.5.7 allows command injection via a compressed e-mail... Moderate Unreviewed

CVE-2025-59689 was published Sep 19, 2025

A deserialization vulnerability in the License Servlet of Fortra's GoAnywhere MFT allows an actor... Critical Unreviewed

CVE-2025-10035 was published Sep 19, 2025

A command injection vulnerability in COMFAST CF-XR11 (firmware V2.7.2) exists in the multi_pppoe... High Unreviewed

CVE-2025-57293 was published Sep 18, 2025

A vulnerability was identified in D-Link DIR-645 105B01. This issue affects the function... Moderate Unreviewed

CVE-2025-10689 was published Sep 18, 2025

An issue Clip Bucket v.5.5.2 Build#90 allows a remote attacker to execute arbitrary codes via the... Moderate Unreviewed

CVE-2025-55911 was published Sep 18, 2025

The cbis_manager Podman container is vulnerable to remote command execution via the /api/plugins... High Unreviewed

CVE-2023-49565 was published Sep 18, 2025

A vulnerability was determined in D-Link DIR-852 1.00CN B09. This issue affects the function... Moderate Unreviewed

CVE-2025-10629 was published Sep 18, 2025

A vulnerability was found in D-Link DIR-852 1.00CN B09. This vulnerability affects unknown code... Moderate Unreviewed

CVE-2025-10628 was published Sep 18, 2025

In JetBrains Junie before 252.284.66, 251.284.66, 243.284.66, 252.284.61, 251.284.61, 243.284.61,... High Unreviewed

CVE-2025-59458 was published Sep 17, 2025

Edimax BR-6473AX v1.0.28 was discovered to contain a remote code execution (RCE) vulnerability... High Unreviewed

CVE-2025-56706 was published Sep 16, 2025

TOTOLINK X6000R V9.4.0cu.1360_B20241207 was found to contain a command injection vulnerability in... Critical Unreviewed

CVE-2025-52053 was published Sep 15, 2025

A vulnerability was found in D-Link DI-8100G, DI-8200G and DI-8003G 17.12.20A1/19.12.10A1.... Moderate Unreviewed

CVE-2025-10441 was published Sep 15, 2025

A vulnerability was determined in Tenda AC9 and AC15 15.03.05.14. This affects the function... Moderate Unreviewed

CVE-2025-10442 was published Sep 15, 2025

A vulnerability has been found in D-Link DI-8100, DI-8100G, DI-8200, DI-8200G, DI-8003 and DI... Moderate Unreviewed

CVE-2025-10440 was published Sep 15, 2025

Previous 1…3…105 Next

Previous 1 2 3 4 5 … 104 105 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,612 advisories