GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,605
Composer 4,714
Erlang 34
GitHub Actions 28
Go 2,297
Maven 5,575
npm 3,942
NuGet 708
pip 3,711
Pub 12
RubyGems 920
Rust 959
Swift 38

Unreviewed advisories

All unreviewed 256,644

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

256,644 advisories

Filter by severity

Sort by

Least recently updated

A cross-site scripting (XSS) vulnerability exists in Grafana caused by combining a client path... High Unreviewed

CVE-2025-4123 was published May 22, 2025

The WooCommerce plugin for WordPress is vulnerable to PostMessage-Based Cross-Site Scripting via... Moderate Unreviewed

CVE-2025-5062 was published May 22, 2025

The Blog2Social: Social Media Auto Post & Scheduler WordPress plugin before 8.4.0 does not escape... Unknown Unreviewed

CVE-2025-4133 was published May 22, 2025

Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability. This... High Unreviewed

CVE-2025-3884 was published May 22, 2025

eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-3883 was published May 22, 2025

Harman Becker MGU21 Bluetooth Improper Input Validation Denial-of-Service Vulnerability. This... Moderate Unreviewed

CVE-2025-3885 was published May 22, 2025

eCharge Hardy Barth cPH2 nwcheckexec.php dest Command Injection Remote Code Execution... High Unreviewed

CVE-2025-3882 was published May 22, 2025

GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed

CVE-2025-3887 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3481 was published May 22, 2025

GStreamer Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This... High Unreviewed

CVE-2025-2759 was published May 22, 2025

MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure... Moderate Unreviewed

CVE-2025-3480 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3483 was published May 22, 2025

Allegra isZipEntryValide Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-3486 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3482 was published May 22, 2025

eCharge Hardy Barth cPH2 check_req.php ntp Command Injection Remote Code Execution Vulnerability.... High Unreviewed

CVE-2025-3881 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3484 was published May 22, 2025

A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0.... Moderate Unreviewed

CVE-2025-5059 was published May 22, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the... Critical Unreviewed

CVE-2025-34026 was published May 22, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the... Critical Unreviewed

CVE-2025-34027 was published May 22, 2025

A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been declared as... Moderate Unreviewed

CVE-2025-5056 was published May 22, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and... High Unreviewed

CVE-2025-34025 was published May 22, 2025

A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been rated as critical.... Moderate Unreviewed

CVE-2025-5057 was published May 22, 2025

A vulnerability was found in FreeFloat FTP Server 1.0. It has been rated as critical. This issue... Moderate Unreviewed

CVE-2025-5050 was published May 21, 2025

A vulnerability was found in FreeFloat FTP Server 1.0. It has been declared as critical. This... Moderate Unreviewed

CVE-2025-5049 was published May 21, 2025

A Stored Cross-Site Scripting (XSS) vulnerability exists in Vtiger CRM Open Source Edition v8.3.0... Moderate Unreviewed

CVE-2025-45755 was published May 21, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

256,644 advisories