GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,605
Composer 4,714
Erlang 34
GitHub Actions 28
Go 2,297
Maven 5,575
npm 3,942
NuGet 708
pip 3,711
Pub 12
RubyGems 920
Rust 959
Swift 38

Unreviewed advisories

All unreviewed 256,687

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22,375 advisories

Filter by severity

Sort by

Least recently updated

This issue was addressed with improved checks. This issue is fixed in watchOS 8.7, iOS 15.6 and... Critical Unreviewed

CVE-2022-32845 was published Sep 25, 2022

This issue was addressed with improved checks. This issue is fixed in iOS 15.6 and iPadOS 15.6,... Critical Unreviewed

CVE-2022-32847 was published Sep 25, 2022

mruby is vulnerable to Heap-based Buffer Overflow Critical Unreviewed

CVE-2022-0080 was published Jan 3, 2022

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3484 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3481 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3483 was published May 22, 2025

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution... Critical Unreviewed

CVE-2025-3482 was published May 22, 2025

The DIGITS: WordPress Mobile Number Signup and Login WordPress plugin before 8.4.6.1 does not... Critical Unreviewed

CVE-2025-4094 was published May 21, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the... Critical Unreviewed

CVE-2025-34026 was published May 22, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an authentication bypass in the... Critical Unreviewed

CVE-2025-34027 was published May 22, 2025

D-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this... Critical Unreviewed

CVE-2025-44084 was published May 20, 2025

The embedded web server lacks authentication and access controls, allowing unrestricted remote... Critical Unreviewed

CVE-2025-36535 was published May 21, 2025

Affected Vertiv products contain a stack based buffer overflow vulnerability. An attacker could... Critical Unreviewed

CVE-2025-41426 was published May 21, 2025

Affected Vertiv products do not properly protect webserver functions that could allow an attacker... Critical Unreviewed

CVE-2025-46412 was published May 21, 2025

The Madara – Responsive and modern WordPress theme for manga sites theme for WordPress is... Critical Unreviewed

CVE-2025-4524 was published May 21, 2025

The SEOPress WordPress plugin before 7.9 does not properly protect some of its REST API routes,... Critical Unreviewed

CVE-2024-5488 was published Jul 9, 2024

The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable... Critical Unreviewed

CVE-2024-6328 was published Jul 12, 2024

libpng before 1.6.32 does not properly check the length of chunks against the user limit. Critical Unreviewed

CVE-2017-12652 was published May 24, 2022

The Meteobridge web interface let meteobridge administrator manage their weather station data... Critical Unreviewed

CVE-2025-4008 was published May 21, 2025

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the tacIp parameter in... Critical Unreviewed

CVE-2025-44883 was published May 20, 2025

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the radDftParamKey... Critical Unreviewed

CVE-2025-44894 was published May 20, 2025

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the host_ip parameter... Critical Unreviewed

CVE-2025-44891 was published May 20, 2025

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the bindEditMACName... Critical Unreviewed

CVE-2025-44896 was published May 20, 2025

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the bytftp_srvip... Critical Unreviewed

CVE-2025-44897 was published May 20, 2025

FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the theauthName... Critical Unreviewed

CVE-2025-44898 was published May 20, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

22,375 advisories