GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,980
Composer 5,607
Erlang 49
GitHub Actions 49
Go 3,521
Maven 6,414
npm 5,732
NuGet 911
pip 4,760
Pub 13
RubyGems 1,036
Rust 1,229
Swift 53

Unreviewed advisories

All unreviewed 298,052

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

159 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

OpenPLC_V3 is vulnerable to an Initialization of a Resource with an Insecure Default... Critical Unreviewed

CVE-2026-28205 was published Apr 9, 2026

NVIDIA Jetson for JetPack contains a vulnerability in the system initialization logic, where an... High Unreviewed

CVE-2026-24148 was published Mar 31, 2026

AMPPS 2.7 contains a denial of service vulnerability that allows remote attackers to crash the... High Unreviewed

CVE-2018-25169 was published Mar 6, 2026

Mongoose Web Server 6.9 contains a denial of service vulnerability that allows remote attackers... High Unreviewed

CVE-2018-25193 was published Mar 6, 2026

Microsoft ACI Confidential Containers Information Disclosure Vulnerability Moderate Unreviewed

CVE-2026-26122 was published Mar 6, 2026

An unauthenticated Remote Code Execution (RCE) vulnerability exists in the SNMP service of... Critical Unreviewed

CVE-2026-28775 was published Mar 4, 2026

UTT HiPER 810 / nv810v4 router firmware v1.5.0-140603 was discovered to contain insecure default... Critical Unreviewed

CVE-2025-70998 was published Feb 18, 2026

A vulnerability was found in Beetel 777VR1 up to 01.00.09. This affects an unknown function of... Moderate Unreviewed

CVE-2026-2617 was published Feb 17, 2026

The Advanced Country Blocker plugin for WordPress is vulnerable to Authorization Bypass in all... Moderate Unreviewed

CVE-2026-1675 was published Feb 7, 2026

Authentication Bypass in fosrl/pangolin v1.6.2 and before allows attackers to access Pangolin... Critical Unreviewed

CVE-2025-56332 was published Dec 30, 2025

Incorrect configuration of replication security in the MariaDB component of the infra-operator in... Moderate Unreviewed

CVE-2025-14758 was published Dec 16, 2025

In GroupSession Free edition prior to ver5.7.1, GroupSession byCloud prior to ver5.7.1, and... Moderate Unreviewed

CVE-2025-64781 was published Dec 12, 2025

In findAvailRecognizer of VoiceInteractionManagerService.java, there is a possible way to become... High Unreviewed

CVE-2025-48629 was published Dec 8, 2025

In DefaultTransitionHandler.java, there is a possible way to enable a tapjacking attack due to a... High Unreviewed

CVE-2025-48621 was published Dec 8, 2025

The BigFix SaaS's HTTP responses were missing some security headers. The absence of these headers... Moderate Unreviewed

CVE-2025-52622 was published Dec 2, 2025

The default configuration of WatchGuard Firebox devices through 2025-09-10 allows administrative... Critical Unreviewed

CVE-2025-59396 was published Nov 6, 2025

By failing to authenticate three times to an unconfigured Abilis CPX device via SSH, an attacker... Moderate Unreviewed

CVE-2025-35021 was published Nov 4, 2025

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Fix... Moderate Unreviewed

CVE-2022-49099 was published Oct 14, 2025

VMware Aria Operations contains an information disclosure vulnerability. A malicious actor with... Moderate Unreviewed

CVE-2025-41245 was published Sep 29, 2025

During a short time frame while the device is booting an unauthenticated remote attacker can send... Moderate Unreviewed

CVE-2025-41713 was published Sep 15, 2025

IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for... High Unreviewed

CVE-2025-36222 was published Sep 11, 2025

In generateRandomPassword of LocalBluetoothLeBroadcast.java, there is a possible way to intercept... Moderate Unreviewed

CVE-2025-32330 was published Sep 4, 2025

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix the smbd_response... Moderate Unreviewed

CVE-2025-38523 was published Aug 16, 2025

A security issue exists due to the web-based debugger agent enabled on Rockwell Automation... Critical Unreviewed

CVE-2025-7353 was published Aug 14, 2025

In TRENDnet TEW-WLC100P 2.03b03, the i_dont_care_about_security_and_use_aggressive_mode_psk... High Unreviewed

CVE-2025-44647 was published Jul 21, 2025

Previous1…7 Next

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

159 advisories