GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,242
Composer 4,809
Erlang 36
GitHub Actions 31
Go 2,393
Maven 5,777
npm 4,026
NuGet 720
pip 3,818
Pub 12
RubyGems 932
Rust 988
Swift 38

Unreviewed advisories

All unreviewed 263,517

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

528 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A PHP object injection vulnerability exists in SugarCRM versions prior to 6.5.24, 6.7.13, 7.5.2.5... Critical Unreviewed

CVE-2025-25034 was published Jun 20, 2025

Deserialization of Untrusted Data vulnerability in CRM Perks Integration for Contact Form 7 and... Critical Unreviewed

CVE-2025-49330 was published Jun 17, 2025

Deserialization of Untrusted Data vulnerability in yuliaz Rapyd Payment Extension for WooCommerce... Critical Unreviewed

CVE-2025-30618 was published Jun 17, 2025

Deserialization of Untrusted Data vulnerability in themeton Spare allows Object Injection. This... Critical Unreviewed

CVE-2025-31919 was published Jun 17, 2025

Deserialization of Untrusted Data vulnerability in LoftOcean CozyStay allows Object Injection... Critical Unreviewed

CVE-2025-49507 was published Jun 10, 2025

Deserialization of Untrusted Data vulnerability in LoftOcean TinySalt allows Object Injection... Critical Unreviewed

CVE-2025-49455 was published Jun 10, 2025

Deserialization of Untrusted Data vulnerability in themeton PressGrid - Frontend Publish Reaction... Critical Unreviewed

CVE-2025-31429 was published Jun 9, 2025

Deserialization of Untrusted Data vulnerability in themeton The Fashion - Model Agency One Page... Critical Unreviewed

CVE-2025-31052 was published Jun 9, 2025

Deserialization of Untrusted Data vulnerability in themeton PIMP - Creative MultiPurpose allows... Critical Unreviewed

CVE-2025-31398 was published Jun 9, 2025

Deserialization of Untrusted Data vulnerability in themeton FLAP - Business WordPress Theme... Critical Unreviewed

CVE-2025-31396 was published Jun 9, 2025

Deserialization of Untrusted Data vulnerability in AncoraThemes Mr. Murphy allows Object... Critical Unreviewed

CVE-2025-49072 was published Jun 6, 2025

Deserialization of Untrusted Data vulnerability in Axiomthemes Sweet Dessert allows Object... Critical Unreviewed

CVE-2025-49073 was published Jun 6, 2025

A deserialization of untrusted data vulnerability in the download file function of Soar Cloud HRD... Critical Unreviewed

CVE-2025-48780 was published Jun 6, 2025

A deserialization of untrusted data vulnerability affecting DELMIA Apriso from Release 2020... Critical Unreviewed

CVE-2025-5086 was published Jun 2, 2025

Deserialization of Untrusted Data vulnerability in ThimPress Course Builder allows Object... Critical Unreviewed

CVE-2025-48336 was published May 29, 2025

Deserialization of Untrusted Data vulnerability in AncoraThemes Kids Planet allows Object... Critical Unreviewed

CVE-2025-48289 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in Pagaleve Pix 4x sem juros - Pagaleve allows... Critical Unreviewed

CVE-2025-48287 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in WPFunnels WPFunnels allows Object Injection.... Critical Unreviewed

CVE-2025-47530 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in CoinPayments CoinPayments.net Payment Gateway... Critical Unreviewed

CVE-2025-47532 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in ZoomIt ZoomSounds allows Object Injection.... Critical Unreviewed

CVE-2025-47568 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in BoldThemes Medicare allows Object Injection.... Critical Unreviewed

CVE-2025-39499 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in AncoraThemes Jarvis – Night Club, Concert,... Critical Unreviewed

CVE-2025-32292 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in ThemeMakers Car Dealer allows Object Injection... Critical Unreviewed

CVE-2025-39480 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in BoldThemes Avantage allows Object Injection.... Critical Unreviewed

CVE-2025-39495 was published May 23, 2025

Deserialization of Untrusted Data vulnerability in themeton Acerola allows Object Injection. This... Critical Unreviewed

CVE-2025-31927 was published May 23, 2025

Previous 1 2 3 4 5 … 21 22 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

528 advisories