GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,378

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

105,229 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is... High Unreviewed

CVE-2025-12099 was published Nov 8, 2025

The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-9334 was published Nov 8, 2025

The Smart Auto Upload Images plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2025-12161 was published Nov 8, 2025

The Asgaros Forum plugin for WordPress is vulnerable to SQL Injection via the '$_COOKIE[... High Unreviewed

CVE-2025-11452 was published Nov 8, 2025

Improper Authorization in Elastic Cloud Enterprise can lead to Privilege Escalation where the... High Unreviewed

CVE-2025-37736 was published Nov 8, 2025

A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when... High Unreviewed

CVE-2025-9900 was published Sep 23, 2025

Missing Authorization vulnerability in bPlugins Info Cards info-cards allows Accessing... High Unreviewed

CVE-2025-54711 was published Nov 6, 2025

In the Linux kernel, the following vulnerability has been resolved: s390: avoid using global... High Unreviewed

CVE-2022-49804 was published May 1, 2025

In the Linux kernel, the following vulnerability has been resolved: drbd: use after free in... High Unreviewed

CVE-2022-49811 was published May 1, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-53585 was published Nov 6, 2025

IBM Db2 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes Db2 Connect Server) under... High Unreviewed

CVE-2025-36186 was published Nov 7, 2025

A flaw was found in the xmlSetTreeDoc() function of the libxml2 XML parsing library. This... High Unreviewed

CVE-2025-12863 was published Nov 7, 2025

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix wild-memory... High Unreviewed

CVE-2022-49799 was published May 1, 2025

In the Linux kernel, the following vulnerability has been resolved: scsi: zfcp: Fix double free... High Unreviewed

CVE-2022-49789 was published May 1, 2025

In the Linux kernel, the following vulnerability has been resolved: tcp: cdg: allow... High Unreviewed

CVE-2022-49775 was published May 1, 2025

An issue was discovered in AnyDesk through 9.0.4. A remotely connected user with the "Control my... High Unreviewed

CVE-2025-27919 was published Nov 6, 2025

An issue was discovered in AnyDesk through 9.0.4. When the connection between two clients is... High Unreviewed

CVE-2025-27916 was published Nov 6, 2025

In the Linux kernel, the following vulnerability has been resolved: kprobes: Skip clearing... High Unreviewed

CVE-2022-49779 was published May 1, 2025

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory... High Unreviewed

CVE-2025-9458 was published Nov 7, 2025

A cross-site scripting (XSS) vulnerability has been reported to affect Notification Center. If a... High Unreviewed

CVE-2025-54167 was published Nov 7, 2025

A relative path traversal vulnerability has been reported to affect QuMagie. If a remote attacker... High Unreviewed

CVE-2025-58464 was published Nov 7, 2025

A Server-Side Request Forgery (SSRF) vulnerability, achievable through an XML External Entity ... High Unreviewed

CVE-2025-63551 was published Nov 6, 2025

A Server-Side Request Forgery (SSRF) in the /api/proxy/ component of linshenkx prompt-optimizer... High Unreviewed

CVE-2025-60541 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in Cozmoslabs TranslatePress translatepress... High Unreviewed

CVE-2025-58592 was published Nov 6, 2025

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows... High Unreviewed

CVE-2025-58619 was published Nov 6, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

105,229 advisories