Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,814
Erlang
36
GitHub Actions
32
Go
2,399
Maven
5,000+
npm
4,040
NuGet
722
pip
3,829
Pub
12
RubyGems
932
Rust
1,002
Swift
38
Unreviewed advisories
All unreviewed
5,000+

109,938 advisories

Loading
A vulnerability classified as critical has been found in Tenda AC20 up to 16.03.08.12. Affected... High Unreviewed
CVE-2025-8160 was published Jul 25, 2025
A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue... High Unreviewed
CVE-2025-8159 was published Jul 25, 2025
An issue in ETSI Open-Source MANO (OSM) v.14.x, v.15.x allows a remote attacker to escalate... High Unreviewed
CVE-2024-48729 was published Jul 25, 2025
Unitree Go1 <= Go1_2022_05_11 is vulnerable to Insecure Permissions as the firmware update... High Unreviewed
CVE-2025-45467 was published Jul 25, 2025
IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 is vulnerable to a privilege escalation caused by an invalid... High Unreviewed
CVE-2025-33109 was published Jul 25, 2025
Tenda AC8V4 V16.03.34.06` was discovered to contain stack overflow at /goform... High Unreviewed
CVE-2025-51087 was published Jul 25, 2025
The hiWeb Export Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... High Unreviewed
CVE-2025-7640 was published Jul 25, 2025
The Dataverse Integration plugin for WordPress is vulnerable to Privilege Escalation due to... High Unreviewed
CVE-2025-7695 was published Jul 25, 2025
SolarWinds Observability Self-Hosted is susceptible to Deserialization of Untrusted Data Local... High Unreviewed
CVE-2025-26397 was published Jul 25, 2025
XWiki Platform vulnerable to SQL injection through XWiki#searchDocuments API High
CVE-2025-54385 was published for org.xwiki.platform:xwiki-platform-oldcore (Maven) Jul 25, 2025
NULL Pointer Dereference in µD3TN via non-singleton destination Endpoint Identifier allows remote... High Unreviewed
CVE-2025-8183 was published Jul 25, 2025
A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical.... High Unreviewed
CVE-2025-8138 was published Jul 25, 2025
A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521. It has been classified as... High Unreviewed
CVE-2025-8139 was published Jul 25, 2025
A vulnerability was found in TOTOLINK A702R 4.0.0-B20230721.1521. It has been declared as... High Unreviewed
CVE-2025-8140 was published Jul 25, 2025
The Droip plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type... High Unreviewed
CVE-2025-5831 was published Jul 25, 2025
The Droip plugin for WordPress is vulnerable to unauthorized modification and access of data due... High Unreviewed
CVE-2025-5835 was published Jul 25, 2025
The Frontend File Manager Plugin plugin for WordPress is vulnerable to unauthorized loss of data... High Unreviewed
CVE-2023-7306 was published Jul 25, 2025
A vulnerability has been found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical.... High Unreviewed
CVE-2025-8137 was published Jul 25, 2025
A vulnerability, which was classified as critical, was found in TOTOLINK A702R 4.0.0-B20230721... High Unreviewed
CVE-2025-8136 was published Jul 25, 2025
A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected... High Unreviewed
CVE-2025-8131 was published Jul 25, 2025
The Responsive Thumbnail Slider plugin for WordPress is vulnerable to arbitrary file uploads due... High Unreviewed
CVE-2015-10144 was published Jul 25, 2025
An authentication vulnerability exists in the LG Innotek camera model LNV5110R firmware that... High Unreviewed
CVE-2025-7742 was published Jul 25, 2025
HCL iAutomate is affected by a sensitive data exposure vulnerability. This issue may allow... High Unreviewed
CVE-2025-31955 was published Jul 24, 2025
Calibre Web and Autocaliweb have a ReDoS vulnerability High
CVE-2025-6998 was published for calibreweb (pip) Jul 24, 2025
gelbphoenix
HCL iAutomate includes hardcoded credentials which may result in potential exposure of... High Unreviewed
CVE-2025-31953 was published Jul 24, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database