Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,026
Maven
5,000+
npm
4,763
NuGet
824
pip
4,366
Pub
12
RubyGems
987
Rust
1,143
Swift
50
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

134 advisories

Loading
A vulnerability was detected in Cesanta Mongoose up to 7.20. This impacts the function... Moderate Unreviewed
CVE-2026-2968 was published Feb 23, 2026
The The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu,... Moderate Unreviewed
CVE-2026-2385 was published Feb 22, 2026
The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login... Moderate Unreviewed
CVE-2025-14444 was published Feb 18, 2026
User interface (ui) misrepresentation of critical information in Microsoft Exchange Server allows... Moderate Unreviewed
CVE-2026-21527 was published Feb 10, 2026
The Rede Itaú for WooCommerce plugin for WordPress is vulnerable to order status manipulation due... Moderate Unreviewed
CVE-2026-0939 was published Jan 16, 2026
A security vulnerability has been detected in PbootCMS up to 3.2.12. The affected element is the... Moderate Unreviewed
CVE-2025-15154 was published Dec 28, 2025
The Subscriptions & Memberships for PayPal plugin for WordPress is vulnerable to fake payment... Moderate Unreviewed
CVE-2025-12752 was published Nov 22, 2025
A weakness has been identified in D-Link DAP-2695 2.00RC13. The affected element is the function... Moderate Unreviewed
CVE-2025-12295 was published Oct 27, 2025
On Wear OS devices, when Google Messages is configured as the default SMS/MMS/RCS application,... Moderate Unreviewed
CVE-2025-12080 was published Oct 27, 2025
A vulnerability was identified in chatwoot up to 4.7.0. This vulnerability affects the function... Moderate Unreviewed
CVE-2025-12245 was published Oct 27, 2025
An issue in the firmware update mechanism of Nous W3 Smart WiFi Camera v1.33.50.82 allows... Moderate Unreviewed
CVE-2025-56438 was published Oct 24, 2025
In handleBondStateChanged of AdapterService.java, there is a possible permission bypass due to... Moderate Unreviewed
CVE-2025-0092 was published Aug 27, 2025
A vulnerability was determined in D-Link DIR-619L 6.02CN02. Affected is the function... Moderate Unreviewed
CVE-2025-8978 was published Aug 14, 2025
A vulnerability was identified in Tenda AC15 15.13.07.13. Affected by this vulnerability is the... Moderate Unreviewed
CVE-2025-8979 was published Aug 14, 2025
A vulnerability has been found in Tenda G1 16.01.7.8(3660). Affected by this issue is the... Moderate Unreviewed
CVE-2025-8980 was published Aug 14, 2025
A vulnerability classified as problematic was found in Eluktronics Control Center 5.23.51.41.... Moderate Unreviewed
CVE-2025-7884 was published Jul 20, 2025
Pioneer DMH-WT7600NEX Software Update Signing Insufficient Verification of Data Authenticity... Moderate Unreviewed
CVE-2025-5832 was published Jun 26, 2025
Pioneer DMH-WT7600NEX Root Filesystem Insufficient Verification of Data Authenticity... Moderate Unreviewed
CVE-2025-5833 was published Jun 26, 2025
Insufficient verification of data authenticity in Windows Virtualization-Based Security (VBS)... Moderate Unreviewed
CVE-2025-27735 was published Apr 8, 2025
A vulnerability has been found in IROAD Dash Cam X5 and Dash Cam X6 up to 20250308 and classified... Moderate Unreviewed
CVE-2025-2346 was published Mar 16, 2025
Insufficient verification of data authenticity in some Zoom Workplace Apps may allow an... Moderate Unreviewed
CVE-2025-0149 was published Mar 11, 2025
Insufficient Verification of Data Authenticity vulnerability in GE Vernova UR IED family devices... Moderate Unreviewed
CVE-2025-27257 was published Mar 10, 2025
Thunderbird displayed an incorrect sender address if the From field of an email used the invalid... Moderate Unreviewed
CVE-2025-0510 was published Feb 4, 2025
Mail spoofing Moderate Unreviewed
CVE-2024-55929 was published Jan 23, 2025
Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-54111 was published Dec 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database