GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,919
Composer 4,476
Erlang 33
GitHub Actions 24
Go 2,207
Maven 5,433
npm 3,858
NuGet 696
pip 3,639
Pub 12
RubyGems 913
Rust 918
Swift 38

Unreviewed advisories

All unreviewed 249,588

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,789 advisories

Filter by severity

Sort by

Least recently updated

The Checkout Mestres do WP for WooCommerce plugin for WordPress is vulnerable to unauthorized... Critical Unreviewed

CVE-2025-2266 was published Mar 29, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-22523 was published Mar 28, 2025

Deserialization of Untrusted Data vulnerability in NotFound PHP/MySQL CPU performance statistics... Critical Unreviewed

CVE-2025-22526 was published Mar 28, 2025

The Kubio AI Page Builder plugin for WordPress is vulnerable to Local File Inclusion in all... Critical Unreviewed

CVE-2025-2294 was published Mar 28, 2025

Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... Critical Unreviewed

CVE-2025-24383 was published Mar 28, 2025

Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... Critical Unreviewed

CVE-2025-22398 was published Mar 28, 2025

Deserialization of Untrusted Data vulnerability in Shinetheme Traveler.This issue affects... Critical Unreviewed

CVE-2025-26873 was published Mar 28, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-26898 was published Mar 28, 2025

An issue in FoxCMS v.1.2.5 allows a remote attacker to execute arbitrary code via the case... Critical Unreviewed

CVE-2025-29306 was published Mar 27, 2025

semcms <=5.0 is vulnerable to SQL Injection in SEMCMS_Fuction.php. Critical Unreviewed

CVE-2025-25686 was published Mar 27, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Critical Unreviewed

CVE-2025-26909 was published Mar 27, 2025

TOTOLINK A800R V4.1.2cu.5137_B20200730 contains a remote command execution vulnerability in the... Critical Unreviewed

CVE-2025-28138 was published Mar 27, 2025

The use of a weak cryptographic key pair in the signature verification process in WPS Office ... Critical Unreviewed

CVE-2025-2516 was published Mar 27, 2025

Following the sandbox escape in CVE-2025-2783, various Firefox developers identified a similar... Critical Unreviewed

CVE-2025-2857 was published Mar 27, 2025

The Export All Posts, Products, Orders, Refunds & Users plugin for WordPress is vulnerable to PHP... Critical Unreviewed

CVE-2025-2332 was published Mar 27, 2025

Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized command execution vulnerability when... Critical Unreviewed

CVE-2025-26003 was published Mar 26, 2025

Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack overflow vulnerability when... Critical Unreviewed

CVE-2025-26005 was published Mar 26, 2025

Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the... Critical Unreviewed

CVE-2025-26006 was published Mar 26, 2025

Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability in the login... Critical Unreviewed

CVE-2025-26007 was published Mar 26, 2025

In Telesquare TLR-2005KSH 1.1.4, an unauthorized stack overflow vulnerability exists when... Critical Unreviewed

CVE-2025-26008 was published Mar 26, 2025

Telesquare TLR-2005KSH 1.1.4 allows unauthorized password modification when requesting the admin... Critical Unreviewed

CVE-2025-26010 was published Mar 26, 2025

Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the... Critical Unreviewed

CVE-2025-26011 was published Mar 26, 2025

HTTP Response Manipulation in SCRIPT CASE v.1.0.002 Build7 allows a remote attacker to escalate... Critical Unreviewed

CVE-2025-25535 was published Mar 26, 2025

Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized stack overflow vulnerability when... Critical Unreviewed

CVE-2025-26002 was published Mar 26, 2025

Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack buffer overflow vulnerability... Critical Unreviewed

CVE-2025-26004 was published Mar 26, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,789 advisories