Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

125,465 advisories

Loading
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41376 was published Aug 1, 2025
D-Link D-View 8 versions 2.0.1.107 and below contain an improper access control vulnerability in... High Unreviewed
CVE-2026-23754 was published Jan 21, 2026
D-Link D-View 8 versions 2.0.1.107 and below contain an uncontrolled search path vulnerability in... High Unreviewed
CVE-2026-23755 was published Jan 21, 2026
A vulnerability was determined in D-Link DIR-615 4.10. Impacted is an unknown function of the... High Unreviewed
CVE-2026-1506 was published Jan 28, 2026
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41375 was published Aug 1, 2025
A vulnerability in Apigee-X allowed an attacker to gain unauthorized read and write access to... High Unreviewed
CVE-2025-13292 was published Dec 6, 2025
An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an... High Unreviewed
CVE-2024-5911 was published Jul 10, 2024
A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on... High Unreviewed
CVE-2024-7517 was published Sep 9, 2025
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression... High Unreviewed
CVE-2025-11175 was published Jan 30, 2026
The db-access WordPress plugin through 0.8.7 does not have authorization in an AJAX action,... High Unreviewed
CVE-2025-13000 was published Dec 2, 2025
An Improper Neutralization of Input During Web Page Generation vulnerability was identified in... High Unreviewed
CVE-2025-13744 was published Jan 6, 2026
Andrea ST Filters Service 1.0.64.7 contains an unquoted service path vulnerability in its Windows... High Unreviewed
CVE-2020-37058 was published Jan 30, 2026
Popcorn Time 6.2.1.14 contains an unquoted service path vulnerability that allows local non... High Unreviewed
CVE-2020-37059 was published Jan 30, 2026
Outline Service 1.3.3 contains an unquoted service path vulnerability that allows local users to... High Unreviewed
CVE-2020-37030 was published Jan 30, 2026
A security flaw has been discovered in Totolink A3600R 5.9c.4959. This issue affects the function... High Unreviewed
CVE-2026-1686 was published Jan 30, 2026
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-4686 was published Jan 30, 2026
Atomic Alarm Clock 6.3 contains a local privilege escalation vulnerability in its service... High Unreviewed
CVE-2020-37060 was published Jan 30, 2026
Use-after-free in the Layout: Scrolling and Overflow component. This vulnerability affects... High Unreviewed
CVE-2026-24869 was published Jan 27, 2026
A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0... High Unreviewed
CVE-2026-1324 was published Jan 22, 2026
Explorer32++ 1.3.5.531 contains a buffer overflow vulnerability in Structured Exception Handler ... High Unreviewed
CVE-2023-54334 was published Jan 14, 2026
An LDAP Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated... High Unreviewed
CVE-2026-1498 was published Jan 30, 2026
Planting a custom configuration file in ESET Inspect Connector allow load a malicious DLL. High Unreviewed
CVE-2025-13176 was published Jan 30, 2026
In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after... High Unreviewed
CVE-2025-38248 was published Jul 9, 2025
Dell UnityVSA, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special... High Unreviewed
CVE-2026-22277 was published Jan 30, 2026
Generation of Error Message Containing Sensitive Information vulnerability in Codriapp Innovation... High Unreviewed
CVE-2025-1395 was published Jan 30, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database