GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,378

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,910 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up... Critical Unreviewed

CVE-2025-5397 was published Oct 31, 2025

A vulnerability in the Mount service of Veeam Backup & Replication, which allows for remote code... Critical Unreviewed

CVE-2025-48983 was published Oct 31, 2025

A malicious actor with access to the management network could exploit a misconfiguration in UniFi... Critical Unreviewed

CVE-2025-52665 was published Oct 31, 2025

Nagios XI versions prior to 2024R2 contain a command injection vulnerability in the WinRM plugin.... Critical Unreviewed

CVE-2025-34284 was published Oct 31, 2025

Nagios XI versions prior to 2026R1 contain a remote code execution vulnerability in the Core... Critical Unreviewed

CVE-2025-34286 was published Oct 31, 2025

Nagios XI versions prior to 2024R1.2 are vulnerable to remote code execution (RCE) through its... Critical Unreviewed

CVE-2024-14003 was published Oct 31, 2025

Nagios XI versions prior to 2024R1.2 contain a command injection vulnerability in the Docker... Critical Unreviewed

CVE-2024-14005 was published Oct 31, 2025

Nagios XI versions prior to 2024R1.3.2 contain a remote command execution vulnerability in the... Critical Unreviewed

CVE-2024-14008 was published Oct 31, 2025

Nagios XI versions prior to 2024R1.0.1 contain a privilege escalation vulnerability in the System... Critical Unreviewed

CVE-2024-14009 was published Oct 31, 2025

Nagios XI versions prior to 2024R1.4.2 contain a remote code execution vulnerability in the... Critical Unreviewed

CVE-2025-34134 was published Oct 31, 2025

Nagios Fusion versions prior to 2024R2.1 contain a brute-force bypass in the Two-Factor... Critical Unreviewed

CVE-2025-34249 was published Oct 31, 2025

Nagios Log Server versions prior to 2024R2.0.3 contain an execution with unnecessary privileges... Critical Unreviewed

CVE-2025-34274 was published Oct 31, 2025

Nagios Log Server versions prior to 2024R1.3.1 contain a code injection vulnerability where... Critical Unreviewed

CVE-2025-34277 was published Oct 31, 2025

Anheng Mingyu Operation and Maintenance Audit and Risk Control System up to 2023-08-10 contains a... Critical Unreviewed

CVE-2023-7325 was published Oct 31, 2025

Nagios XI versions prior to 2024R1 contain a missing access control vulnerability via the Web SSH... Critical Unreviewed

CVE-2023-7317 was published Oct 31, 2025

Nagios XI versions prior to 2024R1.1.3 did not invalidate all other active sessions for a user... Critical Unreviewed

CVE-2024-13996 was published Oct 31, 2025

Seeyon Zhiyuan OA Web Application System versions up to and including 7.0 SP1 improperly decode... Critical Unreviewed

CVE-2021-4461 was published Oct 31, 2025

Nagios XI versions prior to 5.6.14 contain an authenticated remote command execution... Critical Unreviewed

CVE-2020-36856 was published Oct 31, 2025

HCL DRYiCE AEX product is impacted by lack of input validation vulnerability in a particular web... Critical Unreviewed

CVE-2024-30110 was published Oct 30, 2025

Lack of Graceful Error Handling - HTTP 5xx ErrorThis issue affects BLU-IC2: through 1.19.5; BLU... Critical Unreviewed

CVE-2025-12516 was published Oct 30, 2025

Systemic Internal Server Errors - HTTP 500 ResponseThis issue affects BLU-IC2: through 1.19.5;... Critical Unreviewed

CVE-2025-12515 was published Oct 30, 2025

iib0011 omni-tools v0.4.0 is vulnerable to remote code execution via unsafe JSON deserialization. Critical Unreviewed

CVE-2025-50739 was published Oct 30, 2025

A critical severity vulnerability has been identified in the ALPR Manager role of Security Center... Critical Unreviewed

CVE-2025-43027 was published Oct 30, 2025

A Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability... Critical Unreviewed

CVE-2025-53883 was published Oct 30, 2025

win-cli-mcp-server resolveCommandPath Command Injection Remote Code Execution Vulnerability. This... Critical Unreviewed

CVE-2025-11202 was published Oct 29, 2025

Previous 1…4…400 Next

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,910 advisories