GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,378

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

105,229 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is... High Unreviewed

CVE-2025-12099 was published Nov 8, 2025

The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-9334 was published Nov 8, 2025

The Smart Auto Upload Images plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2025-12161 was published Nov 8, 2025

The Asgaros Forum plugin for WordPress is vulnerable to SQL Injection via the '$_COOKIE[... High Unreviewed

CVE-2025-11452 was published Nov 8, 2025

Improper Authorization in Elastic Cloud Enterprise can lead to Privilege Escalation where the... High Unreviewed

CVE-2025-37736 was published Nov 8, 2025

IBM Db2 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes Db2 Connect Server) under... High Unreviewed

CVE-2025-36186 was published Nov 7, 2025

A flaw was found in the xmlSetTreeDoc() function of the libxml2 XML parsing library. This... High Unreviewed

CVE-2025-12863 was published Nov 7, 2025

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Memory... High Unreviewed

CVE-2025-9458 was published Nov 7, 2025

A relative path traversal vulnerability has been reported to affect QuMagie. If a remote attacker... High Unreviewed

CVE-2025-58464 was published Nov 7, 2025

A cross-site scripting (XSS) vulnerability has been reported to affect Notification Center. If a... High Unreviewed

CVE-2025-54167 was published Nov 7, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'), CWE - 564 -... High Unreviewed

CVE-2025-10968 was published Nov 7, 2025

The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is... High Unreviewed

CVE-2025-4519 was published Nov 7, 2025

The LC Wizard plugin for WordPress is vulnerable to Privilege Escalation due to a missing... High Unreviewed

CVE-2025-5483 was published Nov 7, 2025

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file... High Unreviewed

CVE-2025-62630 was published Nov 7, 2025

Use after free in Safe Browsing in Google Chrome prior to 141.0.7390.107 allowed a remote... High Unreviewed

CVE-2025-11756 was published Nov 7, 2025

Out of bounds memory access in V8 in Google Chrome prior to 141.0.7390.122 allowed a remote... High Unreviewed

CVE-2025-12036 was published Nov 7, 2025

Heap buffer overflow in Sync in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to... High Unreviewed

CVE-2025-11458 was published Nov 7, 2025

The Ubia camera ecosystem fails to adequately secure API credentials, potentially enabling an... High Unreviewed

CVE-2025-12636 was published Nov 7, 2025

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file... High Unreviewed

CVE-2025-58423 was published Nov 7, 2025

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file... High Unreviewed

CVE-2025-59171 was published Nov 7, 2025

Heap buffer overflow in WebGPU in Google Chrome prior to 141.0.7390.54 allowed a remote attacker... High Unreviewed

CVE-2025-11205 was published Nov 7, 2025

Heap buffer overflow in Video in Google Chrome prior to 141.0.7390.54 allowed a remote attacker... High Unreviewed

CVE-2025-11206 was published Nov 7, 2025

evernote-mcp-server openBrowser Command Injection Privilege Escalation Vulnerability. This... High Unreviewed

CVE-2025-12489 was published Nov 6, 2025

Heimdall Data Database Proxy Cross-Site Scripting Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-12486 was published Nov 6, 2025

Netgate pfSense CE Suricata Path Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-12490 was published Nov 6, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

105,229 advisories