Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,499
Maven
5,000+
npm
4,141
NuGet
735
pip
3,945
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,529 advisories

Loading
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the... Moderate Unreviewed
CVE-2025-25813 was published Mar 6, 2025
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the... Moderate Unreviewed
CVE-2025-25796 was published Mar 6, 2025
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the... Moderate Unreviewed
CVE-2025-25797 was published Mar 6, 2025
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the... Moderate Unreviewed
CVE-2025-25793 was published Mar 6, 2025
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the... Moderate Unreviewed
CVE-2025-25794 was published Mar 6, 2025
Smartwares cameras CIP-37210AT and C724IP, as well as others which share the same firmware in... High Unreviewed
CVE-2024-13892 was published Mar 6, 2025
Tenda AC15 v15.03.05.19 is vulnerable to Command Injection via the handler function in /goform... Critical Unreviewed
CVE-2025-25632 was published Mar 5, 2025
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the isopen... Moderate Unreviewed
CVE-2025-25792 was published Mar 3, 2025
An arbitrary file upload vulnerability in the plugin installation feature of YZNCMS v2.0.1 allows... Moderate Unreviewed
CVE-2025-25791 was published Mar 3, 2025
A vulnerability has been found in ESAFENET DSM 3.1.2 and classified as critical. Affected by this... Moderate Unreviewed
CVE-2025-1845 was published Mar 3, 2025
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. It has been declared as... Moderate Unreviewed
CVE-2025-1829 was published Mar 2, 2025
A vulnerability, which was classified as critical, was found in Tenda AC7 1200M 15.03.06.44.... Moderate Unreviewed
CVE-2025-1819 was published Mar 2, 2025
A vulnerability has been found in D-Link DAR-7000 3.2 and classified as critical. This... Moderate Unreviewed
CVE-2025-1800 was published Mar 1, 2025
An Improper Neutralization of Escape Sequences vulnerability could allow an Authentication Bypass... High Unreviewed
CVE-2025-23119 was published Mar 1, 2025
A vulnerability in the CLI of Cisco APIC could allow an authenticated, local attacker to execute... Moderate Unreviewed
CVE-2025-20117 was published Feb 26, 2025
A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1.... Moderate Unreviewed
CVE-2025-1676 was published Feb 25, 2025
An issue in sparkshop v.1.1.7 and before allows a remote attacker to execute arbitrary code via a... Moderate Unreviewed
CVE-2024-57685 was published Feb 25, 2025
An issue in Via Browser 6.1.0 allows a a remote attacker to execute arbitrary code via the mark... Moderate Unreviewed
CVE-2024-57608 was published Feb 25, 2025
A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU... Moderate Unreviewed
CVE-2025-1616 was published Feb 24, 2025
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by... Moderate Unreviewed
CVE-2025-1610 was published Feb 24, 2025
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2.... Moderate Unreviewed
CVE-2025-1608 was published Feb 24, 2025
A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical.... Moderate Unreviewed
CVE-2025-1609 was published Feb 24, 2025
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the... Moderate Unreviewed
CVE-2025-25605 was published Feb 21, 2025
MRCMS v3.1.2 was discovered to contain a server-side template injection (SSTI) vulnerability in... Moderate Unreviewed
CVE-2025-25768 was published Feb 21, 2025
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable... Moderate Unreviewed
CVE-2025-25604 was published Feb 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database