GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,176
Composer 4,340
Erlang 31
GitHub Actions 22
Go 2,100
Maven 5,278
npm 3,764
NuGet 678
pip 3,448
Pub 12
RubyGems 892
Rust 883
Swift 37

Unreviewed advisories

All unreviewed 242,897

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,267 advisories

Filter by severity

Sort by

Least recently updated

OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component... Critical Unreviewed

CVE-2024-55192 was published Jan 24, 2025

Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP... Critical Unreviewed

CVE-2022-37042 was published Aug 13, 2022

SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via... Critical Unreviewed

CVE-2022-29303 was published May 13, 2022

Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET... Critical Unreviewed

CVE-2023-25717 was published Feb 13, 2023

The vCenter Server contains an arbitrary file upload vulnerability in the Analytics service. A... Critical Unreviewed

CVE-2021-22005 was published May 24, 2022

D-Link DIR-820L 1.05B03 was discovered to contain a remote command execution (RCE) vulnerability... Critical Unreviewed

CVE-2022-26258 was published Mar 29, 2022

An arbitrary file upload vulnerability in Trend Micro Apex Central could allow an unauthenticated... Critical Unreviewed

CVE-2022-26871 was published Mar 30, 2022

The TP-240 (aka tp240dvr) component in Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business... Critical Unreviewed

CVE-2022-26143 was published Mar 11, 2022

OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401... Critical Unreviewed

CVE-2020-3992 was published May 24, 2022

In Apache CouchDB prior to 3.2.2, an attacker can access an improperly secured default... Critical Unreviewed

CVE-2022-24706 was published Apr 27, 2022

The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input... Critical Unreviewed

CVE-2021-21985 was published May 24, 2022

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3,... Critical Unreviewed

CVE-2023-27958 was published May 8, 2023

OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component /OpenImageIO... Critical Unreviewed

CVE-2024-55194 was published Jan 24, 2025

A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been rated as... Critical Unreviewed

CVE-2025-0798 was published Jan 29, 2025

Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing... Critical Unreviewed

CVE-2022-42948 was published Mar 24, 2023

An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable... Critical Unreviewed

CVE-2022-26486 was published Dec 22, 2022

A code injection vulnerability in the User Portal and Webadmin allows a remote attacker to... Critical Unreviewed

CVE-2022-3236 was published Sep 25, 2022

Zoho ManageEngine Password Manager Pro before 12101 and PAM360 before 5510 are vulnerable to... Critical Unreviewed

CVE-2022-35405 was published Jul 20, 2022

CMSimple 5.16 allows the user to edit log.php file via print page. Critical Unreviewed

CVE-2024-57548 was published Jan 28, 2025

TRENDnet TEW-632BRP v1.010B31 devices have an OS command injection vulnerability in the CGl... Critical Unreviewed

CVE-2024-57590 was published Jan 27, 2025

A Remote Code Execution Vulnerability exists in the product and version listed above. The... Critical Unreviewed

CVE-2025-24480 was published Jan 28, 2025

An issue in youdiancms v.9.5.20 and before allows a remote attacker to escalate privileges via... Critical Unreviewed

CVE-2024-57052 was published Jan 28, 2025

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma... Critical Unreviewed

CVE-2025-24163 was published Jan 28, 2025

An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS... Critical Unreviewed

CVE-2025-24154 was published Jan 28, 2025

This issue was addressed through improved state management. This issue is fixed in visionOS 2.3,... Critical Unreviewed

CVE-2025-24162 was published Jan 28, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,267 advisories