GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,206
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,109
Maven 5,284
npm 3,765
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 887
Swift 37

Unreviewed advisories

All unreviewed 243,418

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,299 advisories

Filter by severity

Sort by

Least recently updated

An issue in OPEXUS FOIAXPRESS PUBLIC ACCESS LINK v11.1.0 allows attackers to bypass... Critical Unreviewed

CVE-2024-53553 was published Jan 17, 2025

Qualisys C++ SDK commit a32a21a was discovered to contain multiple stack buffer overflows via the... Critical Unreviewed

CVE-2024-53320 was published Jan 31, 2025

The specific component in Celk Saude 3.1.252.1 that processes user input and returns error... Critical Unreviewed

CVE-2024-48761 was published Jan 30, 2025

EventAttendance.php in ChurchCRM 5.7.0 is vulnerable to SQL injection. An attacker can exploit... Critical Unreviewed

CVE-2024-53438 was published Nov 22, 2024

JFinalCMS 1.0 is vulnerable to SQL Injection in rc/main/java/com/cms/entity/Content.java. The... Critical Unreviewed

CVE-2024-57665 was published Jan 30, 2025

Advantive VeraCore before 2024.4.2.1 allows remote authenticated users to upload files to... Critical Unreviewed

CVE-2024-57968 was published Feb 3, 2025

Eclipse Target Management: Terminal and Remote System Explorer (RSE) version <= 4.5.400 has a... Critical Unreviewed

CVE-2024-0740 was published Apr 26, 2024

A SQL injection vulnerability exists in the front-end of the website in ZZCMS <= 2023, which can... Critical Unreviewed

CVE-2025-22957 was published Jan 31, 2025

MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the... Critical Unreviewed

CVE-2024-57763 was published Jan 15, 2025

macrozheng mall-tiny 1.0.1 suffers from Insecure Permissions. The application's JWT signing keys... Critical Unreviewed

CVE-2024-57432 was published Jan 31, 2025

MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the... Critical Unreviewed

CVE-2024-57766 was published Jan 15, 2025

EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0 are vulnerable to privilege escalation as the... Critical Unreviewed

CVE-2024-53356 was published Feb 1, 2025

EasyVirt DCScope 8.6.0 and earlier and co2Scope 1.3.0 and earlier are vulnerable to Command... Critical Unreviewed

CVE-2024-55062 was published Feb 1, 2025

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead... Critical Unreviewed

CVE-2025-20634 was published Feb 3, 2025

OpenPanel v0.3.4 was discovered to contain an OS command injection vulnerability via the timezone... Critical Unreviewed

CVE-2024-53584 was published Jan 31, 2025

A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The flaw is... Critical Unreviewed

CVE-2024-3120 was published Apr 10, 2024

Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure... Critical Unreviewed

CVE-2021-42237 was published May 24, 2022

Zoho ManageEngine ADSelfService Plus version 6113 and prior is vulnerable to REST API... Critical Unreviewed

CVE-2021-40539 was published May 24, 2022

BQE BillQuick Web Suite 2018 through 2021 before 22.0.9.1 allows SQL injection for... Critical Unreviewed

CVE-2021-42258 was published May 24, 2022

Memory corruption while parsing the ML IE due to invalid frame content. Critical Unreviewed

CVE-2024-45569 was published Feb 3, 2025

SSH Communication Security PrivX versions between 18.0-36.0 implement insufficient validation on... Critical Unreviewed

CVE-2024-47857 was published Jan 31, 2025

MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the... Critical Unreviewed

CVE-2024-57764 was published Jan 15, 2025

A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to improper... Critical Unreviewed

CVE-2024-3119 was published Apr 10, 2024

Accellion FTA 9_12_411 and earlier is affected by SSRF via a crafted POST request to... Critical Unreviewed

CVE-2021-27103 was published May 24, 2022

Aigital Wireless-N Repeater Mini_Router v0.131229 was discovered to contain a remote code... Critical Unreviewed

CVE-2023-30404 was published Apr 26, 2023

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,299 advisories