GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,212

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

136 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

ContentKeeper Web Appliance (now maintained by Impero Software) versions prior to 125.10 expose... High Unreviewed

CVE-2009-10005 was published Aug 20, 2025

NVIDIA Installer for Windows contains a vulnerability where an attacker may be able to escalate... High Unreviewed

CVE-2025-23276 was published Aug 3, 2025

A vulnerability exists in Sitecore Experience Manager (XM), Experience Platform (XP), Experience... High Unreviewed

CVE-2025-34139 was published Jul 25, 2025

OA EKP v16 was discovered to contain an arbitrary download vulnerability via the component /ui... High Unreviewed

CVE-2023-41566 was published Jul 17, 2025

Multiple Brother driver installers for Windows contain a privilege escalation vulnerability. If... High Unreviewed

CVE-2025-49797 was published Jun 26, 2025

Lack of file validation in do_update_vps in Avast Business Antivirus for Linux 4.5 on Linux... High Unreviewed

CVE-2025-4134 was published May 28, 2025

An arbitrary file read vulnerability in the ReadTextAsynchronous function of SSCMS v7.3.1 allows... High Unreviewed

CVE-2025-45529 was published May 27, 2025

A vulnerability was discovered in Pagure server. If a malicious user were to submit a git... High Unreviewed

CVE-2024-4981 was published May 12, 2025

A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges to... High Unreviewed

CVE-2025-32819 was published May 7, 2025

Local File Inclusion vulnerability in Ready's attachment upload panel allows low privileged user... High Unreviewed

CVE-2025-1982 was published Apr 16, 2025

CWE-552: Files or Directories Accessible to External Parties vulnerability over https exists that... High Unreviewed

CVE-2025-2222 was published Apr 9, 2025

The ReadFile endpoint of the firmware for Mennekes Smart / Premium Chargingpoints can be abused... High Unreviewed

CVE-2025-22369 was published Mar 11, 2025

A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed

CVE-2025-25266 was published Mar 11, 2025

Files or Directories Accessible to External Parties vulnerability in Agito Computer Health4All... High Unreviewed

CVE-2024-12917 was published Feb 24, 2025

In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205),... High Unreviewed

CVE-2024-11629 was published Feb 12, 2025

Local File Inclusion vulnerability in dhtmlxFileExplorer v.8.4.6 allows a remote attacker to... High Unreviewed

CVE-2024-55214 was published Feb 7, 2025

Directory Traversal vulnerability in dhtmlxFileExplorer v.8.4.6 allows a remote attacker to... High Unreviewed

CVE-2024-55213 was published Feb 7, 2025

ChestnutCMS <=1.5.0 has an arbitrary file deletion vulnerability in contentcore.controller... High Unreviewed

CVE-2024-57452 was published Feb 3, 2025

Potential privilege escalation vulnerability in Revenera InstallShield versions 2022 R2 and 2021... High Unreviewed

CVE-2023-29080 was published Jan 30, 2025

A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.80), SIPROTEC... High Unreviewed

CVE-2024-53649 was published Jan 14, 2025

The CGI script <redacted>.sh can be used to download any file on the filesystem. This issue... High Unreviewed

CVE-2024-43660 was published Jan 9, 2025

A widget local file inclusion vulnerability in Trend Micro Apex One could allow a remote attacker... High Unreviewed

CVE-2024-52047 was published Dec 31, 2024

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Privilege Escalation... High Unreviewed

CVE-2024-50627 was published Dec 10, 2024

Configuration Download vulnerabilities allow access to dependency configuration information. ... High Unreviewed

CVE-2024-51542 was published Dec 5, 2024

Rapid7 Velociraptor MSI Installer versions below 0.73.3 suffer from a vulnerability whereby it... High Unreviewed

CVE-2024-10526 was published Nov 7, 2024

Previous1…6 Next

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

136 advisories