Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,910 advisories

Loading
Upsonic has vulnerability in Pickle Handler component that can lead to deserialization Low
CVE-2025-6279 was published for upsonic (pip) Jun 19, 2025
PowSyBl Core allows deserialization of untrusted SparseMatrix data High
CVE-2025-47771 was published for com.powsybl:powsybl-math (Maven) Jun 19, 2025
arthurscchan AdamKorcz
olperr1 rolnico
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could... Critical Unreviewed
CVE-2025-49212 was published Jun 17, 2025
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could... High Unreviewed
CVE-2025-49214 was published Jun 17, 2025
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could... Critical Unreviewed
CVE-2025-49213 was published Jun 17, 2025
An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could... Critical Unreviewed
CVE-2025-49217 was published Jun 17, 2025
An insecure deserialization operation in Trend Micro Apex Central below versions 8.0.7007 could... Critical Unreviewed
CVE-2025-49219 was published Jun 17, 2025
An insecure deserialization operation in Trend Micro Apex Central below version 8.0.7007 could... Critical Unreviewed
CVE-2025-49220 was published Jun 17, 2025
Deserialization of Untrusted Data vulnerability in CRM Perks Integration for Contact Form 7 and... Critical Unreviewed
CVE-2025-49330 was published Jun 17, 2025
Deserialization of Untrusted Data vulnerability in impleCode eCommerce Product Catalog allows... High Unreviewed
CVE-2025-49331 was published Jun 17, 2025
Deserialization of Untrusted Data vulnerability in themeton Spare allows Object Injection. This... Critical Unreviewed
CVE-2025-31919 was published Jun 17, 2025
Deserialization of Untrusted Data vulnerability in yuliaz Rapyd Payment Extension for WooCommerce... Critical Unreviewed
CVE-2025-30618 was published Jun 17, 2025
A deserialization of untrusted input vulnerability exists in the cvhDecapsulateCmd functionality... High Unreviewed
CVE-2025-24919 was published Jun 14, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed
CVE-2025-47166 was published Jun 10, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed
CVE-2025-47163 was published Jun 10, 2025
Deserialization of Untrusted Data vulnerability in LoftOcean CozyStay allows Object Injection... Critical Unreviewed
CVE-2025-49507 was published Jun 10, 2025
Deserialization of Untrusted Data vulnerability in LoftOcean TinySalt allows Object Injection... Critical Unreviewed
CVE-2025-49455 was published Jun 10, 2025
Apache Kafka Deserialization of Untrusted Data vulnerability High
CVE-2025-27818 was published for org.apache.kafka:kafka (Maven) Jun 10, 2025
Apache Kafka Deserialization of Untrusted Data vulnerability High
CVE-2025-27819 was published for org.apache.kafka:kafka (Maven) Jun 10, 2025
Deserialization of Untrusted Data vulnerability in themeton The Fashion - Model Agency One Page... Critical Unreviewed
CVE-2025-31052 was published Jun 9, 2025
Deserialization of Untrusted Data vulnerability in themeton PressGrid - Frontend Publish Reaction... Critical Unreviewed
CVE-2025-31429 was published Jun 9, 2025
Deserialization of Untrusted Data vulnerability in themeton PIMP - Creative MultiPurpose allows... Critical Unreviewed
CVE-2025-31398 was published Jun 9, 2025
Deserialization of Untrusted Data vulnerability in themeton FLAP - Business WordPress Theme... Critical Unreviewed
CVE-2025-31396 was published Jun 9, 2025
Apache InLong Deserialization of Untrusted Data Vulnerability High
CVE-2025-27531 was published for org.apache.inlong:inlong-manager (Maven) Jun 6, 2025
Deserialization of Untrusted Data vulnerability in AncoraThemes Mr. Murphy allows Object... Critical Unreviewed
CVE-2025-49072 was published Jun 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database