GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,680

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

104,967 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An unauthenticated remote attacker can cause a DoS in the controller due to uncontrolled resource... High Unreviewed

CVE-2018-25108 was published Jan 16, 2025

A weak authentication in Fortinet FortiManager Cloud, FortiAnalyzer versions 7.6.0 through 7.6.1,... High Unreviewed

CVE-2024-50563 was published Jan 16, 2025

The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... High Unreviewed

CVE-2024-12613 was published Jan 16, 2025

The Passwords Manager plugin for WordPress is vulnerable to unauthorized modification of data due... High Unreviewed

CVE-2024-12614 was published Jan 16, 2025

A incorrect privilege assignment in Fortinet FortiAnalyzer versions 7.4.0 through 7.4.3, 7.2.0... High Unreviewed

CVE-2024-45331 was published Jan 16, 2025

The airPASS from NetVision Information has an OS Command Injection vulnerability, allowing remote... High Unreviewed

CVE-2025-0457 was published Jan 16, 2025

SQL Injection vulnerability in DDSN Net Pty Ltd (DDSN Interactive) DDSN Interactive cm3 Acora CMS... High Unreviewed

CVE-2025-22964 was published Jan 16, 2025

SQL Injection vulnerability in dingfanzuCMS v.1.0 allows a local attacker to execute arbitrary... High Unreviewed

CVE-2025-22976 was published Jan 16, 2025

SimpleHelp remote support software v5.5.7 and before has a vulnerability that allows low... High Unreviewed

CVE-2024-57726 was published Jan 16, 2025

SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files... High Unreviewed

CVE-2024-57728 was published Jan 16, 2025

A vulnerability has been found in D-Link DIR-823X 240126/240802 and classified as critical.... High Unreviewed

CVE-2025-0492 was published Jan 16, 2025

SimpleHelp remote support software v5.5.7 and before is vulnerable to multiple path traversal... High Unreviewed

CVE-2024-57727 was published Jan 16, 2025

An issue in the USB Autorun function of HI-SCAN 6040i Hitrax HX-03-19-I allows attackers to... High Unreviewed

CVE-2024-48123 was published Jan 15, 2025

An issue in the AsDB service of HI-SCAN 6040i Hitrax HX-03-19-I allows attackers to enumerate... High Unreviewed

CVE-2024-48125 was published Jan 15, 2025

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5, iOS 16.7... High Unreviewed

CVE-2024-27856 was published Jan 15, 2025

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.5,... High Unreviewed

CVE-2024-40771 was published Jan 15, 2025

An issue in the native clients for Amazon WorkSpaces, Amazon AppStream 2.0, and Amazon DCV... High Unreviewed

CVE-2025-0500 was published Jan 15, 2025

An issue in the native clients for Amazon WorkSpaces Clients when running PCoIP protocol may... High Unreviewed

CVE-2025-0501 was published Jan 15, 2025

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed

CVE-2024-7085 was published Jan 15, 2025

An untrusted search path vulnerability in testinitsigs.exe as used in Bitdefender Antivirus Free... High Unreviewed

CVE-2020-8094 was published Jan 15, 2025

Path Traversal vulnerability in ElementInvader ElementInvader Addons for Elementor allows PHP... High Unreviewed

CVE-2025-22786 was published Jan 15, 2025

An issue in XINJE XL5E-16T V3.7.2a allows attackers to cause a Denial of Service (DoS) via a... High Unreviewed

CVE-2024-50953 was published Jan 15, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-22766 was published Jan 15, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-22799 was published Jan 15, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Johan Ström Background Control allows Path... High Unreviewed

CVE-2025-22784 was published Jan 15, 2025

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

104,967 advisories