GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,610
Composer 4,714
Erlang 34
GitHub Actions 28
Go 2,300
Maven 5,576
npm 3,942
NuGet 708
pip 3,711
Pub 12
RubyGems 920
Rust 960
Swift 38

Unreviewed advisories

All unreviewed 256,746

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22,381 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB... Critical Unreviewed

CVE-2024-51547 was published Feb 6, 2025

The calling logic for WhatsApp for Android prior to v2.21.23, WhatsApp Business for Android prior... Critical Unreviewed

CVE-2021-24042 was published Jan 5, 2022

Medtronic MyCareLink Smart 25000 all versions are vulnerable when an attacker who gains auth runs... Critical Unreviewed

CVE-2020-25187 was published May 24, 2022

The screen lock module has a Stack-based Buffer Overflow vulnerability.Successful exploitation of... Critical Unreviewed

CVE-2021-39990 was published Jan 4, 2022

2nd Order SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of... Critical Unreviewed

CVE-2024-13955 was published May 22, 2025

An incorrect authorization vulnerability exists in multiple WSO2 products due to a business logic... Critical Unreviewed

CVE-2024-6914 was published May 22, 2025

An issue was discovered in Infoblox NETMRI before 7.6.1. Unauthenticated SQL Injection can occur. Critical Unreviewed

CVE-2025-32814 was published May 22, 2025

IEEE P802.11-REVme D1.1 through D7.0 allows FragAttacks against mesh networks. In mesh networks... Critical Unreviewed

CVE-2025-27558 was published May 21, 2025

An issue in D-Link DI-8100 16.07.26A1 allows a remote attacker to bypass administrator login... Critical Unreviewed

CVE-2025-44083 was published May 21, 2025

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the byruleEditName... Critical Unreviewed

CVE-2025-44886 was published May 20, 2025

An escalation of privilege vulnerability in ASPECT could provide an attacker root access to a... Critical Unreviewed

CVE-2024-48853 was published May 22, 2025

Nagios XI before version 5.11.3 was discovered to contain a remote code execution (RCE)... Critical Unreviewed

CVE-2023-48085 was published Dec 14, 2023

This issue was addressed with improved checks. This issue is fixed in watchOS 8.7, iOS 15.6 and... Critical Unreviewed

CVE-2022-32845 was published Sep 25, 2022

This issue was addressed with improved checks. This issue is fixed in iOS 15.6 and iPadOS 15.6,... Critical Unreviewed

CVE-2022-32847 was published Sep 25, 2022

mruby is vulnerable to Heap-based Buffer Overflow Critical Unreviewed

CVE-2022-0080 was published Jan 3, 2022

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3484 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3483 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3481 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3482 was published May 22, 2025

The DIGITS: WordPress Mobile Number Signup and Login WordPress plugin before 8.4.6.1 does not... Critical Unreviewed

CVE-2025-4094 was published May 21, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the... Critical Unreviewed

CVE-2025-34027 was published May 22, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the... Critical Unreviewed

CVE-2025-34026 was published May 22, 2025

D-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this... Critical Unreviewed

CVE-2025-44084 was published May 20, 2025

Affected Vertiv products contain a stack based buffer overflow vulnerability. An attacker could... Critical Unreviewed

CVE-2025-41426 was published May 21, 2025

The embedded web server lacks authentication and access controls, allowing unrestricted remote... Critical Unreviewed

CVE-2025-36535 was published May 21, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

22,381 advisories