GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,956
Composer 4,486
Erlang 33
GitHub Actions 24
Go 2,211
Maven 5,441
npm 3,868
NuGet 696
pip 3,642
Pub 12
RubyGems 913
Rust 920
Swift 38

Unreviewed advisories

All unreviewed 250,384

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,448 advisories

Filter by severity

Sort by

Least recently updated

The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.4, macOS... High Unreviewed

CVE-2025-24243 was published Apr 1, 2025

Incomplete blacklist vulnerability in ajax/upload.php in ownCloud before 5.0, when running on... High Unreviewed

CVE-2014-2044 was published May 14, 2022

ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 allows remote attackers to conduct an LDAP... High Unreviewed

CVE-2014-2051 was published May 17, 2022

The So-Called Air Quotes plugin for WordPress is vulnerable to arbitrary shortcode execution in... High Unreviewed

CVE-2025-2803 was published Mar 29, 2025

AyaCMS v3.1.2 was discovered to contain a remote code execution (RCE) vulnerability via the... High Unreviewed

CVE-2022-48116 was published Jan 27, 2023

Potential vulnerabilities have been identified in the system BIOS of certain HP PC products,... High Unreviewed

CVE-2022-27537 was published Feb 1, 2023

KNIME Business Hub is affected by the Ingress-nginx CVE-2025-1974 ( a.k.a IngressNightmare )... High Unreviewed

CVE-2025-2787 was published Mar 26, 2025

Certain HP software packages (SoftPaqs) are potentially vulnerable to arbitrary code execution... High Unreviewed

CVE-2024-28893 was published May 1, 2024

A code execution vulnerability exists in the XiaomiGetApps application product. This... High Unreviewed

CVE-2024-45346 was published Aug 28, 2024

PublicCMS v4.0.202302.e was discovered to contain a remote commande execution (RCE) vulnerability... High Unreviewed

CVE-2024-40552 was published Jul 12, 2024

Buffer Overflow vulnerability in Bento4 Bento v.1.6.0-641 allows a remote attacker to execute... High Unreviewed

CVE-2024-31003 was published Apr 2, 2024

Komm.One CMS 10.4.2.14 has a Server-Side Template Injection (SSTI) vulnerability via the Velocity... High Unreviewed

CVE-2024-24230 was published Mar 18, 2024

An issue in onethink v.1.1 allows a remote attacker to execute arbitrary code via a crafted... High Unreviewed

CVE-2024-33443 was published Apr 29, 2024

A vulnerability, found in EdgeRouters Version 2.0.9-hotfix.5 and earlier and UniFi Security... High Unreviewed

CVE-2023-23912 was published Feb 9, 2023

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed

CVE-2024-23921 was published Jan 31, 2025

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed

CVE-2024-23963 was published Jan 31, 2025

A type confusion bug in WebAssembly could be leveraged by an attacker to potentially achieve code... High Unreviewed

CVE-2024-7520 was published Aug 6, 2024

The Block Logic – Full Gutenberg Block Display Control plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-2303 was published Mar 22, 2025

LoLLMS Code Injection vulnerability High

CVE-2024-6982 was published for lollms (pip) Mar 20, 2025

LSC Smart Connect LSC Indoor PTZ Camera 7.6.32 is contains a RCE vulnerability in the... High Unreviewed

CVE-2025-25680 was published Mar 11, 2025

Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute... High Unreviewed

CVE-2025-29807 was published Mar 21, 2025

The XINJE XL5E-16T and XD5E-24R-E programmable logic controllers V3.5.3b-V3.7.2a have a... High Unreviewed

CVE-2024-50954 was published Jan 15, 2025

A vulnerability in the Dify Tools' Vanna module of the langgenius/dify repository allows for a... High Unreviewed

CVE-2025-0185 was published Mar 20, 2025

man-group dtale version <= 3.13.1 contains a vulnerability where the query parameters from the... High Unreviewed

CVE-2024-9016 was published Mar 20, 2025

SuperAGI is vulnerable to remote code execution in the latest version. The `agent template update... High Unreviewed

CVE-2024-9439 was published Mar 20, 2025

Previous 1 2 3 4 5 … 97 98 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,448 advisories