GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,775

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,290 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Catalog Importer, Scraper & Crawler plugin for WordPress is vulnerable to PHP code injection... High Unreviewed

CVE-2025-8417 was published Sep 11, 2025

The AutomatorWP – Automator plugin for no-code automations, webhooks & custom integrations in... High Unreviewed

CVE-2025-9539 was published Sep 9, 2025

The The REHub - Price Comparison, Multi Vendor Marketplace Wordpress Theme theme for WordPress is... High Unreviewed

CVE-2025-7366 was published Sep 6, 2025

The atec Debug plugin for WordPress is vulnerable to remote code execution in all versions up to,... High Unreviewed

CVE-2025-9517 was published Sep 4, 2025

The Easy Timer plugin for WordPress is vulnerable to Remote Code Execution in all versions up to,... High Unreviewed

CVE-2025-9519 was published Sep 4, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in emarket-design YouTube... High Unreviewed

CVE-2025-54731 was published Aug 28, 2025

NVIDIA NeMo Framework for all platforms contains a vulnerability in the export and deploy... High Unreviewed

CVE-2025-23315 was published Aug 26, 2025

NVIDIA NeMo Framework for all platforms contains a vulnerability in the NLP component, where... High Unreviewed

CVE-2025-23314 was published Aug 26, 2025

NVIDIA NeMo Curator for all platforms contains a vulnerability where a malicious file created by... High Unreviewed

CVE-2025-23307 was published Aug 26, 2025

NVIDIA NeMo Framework for all platforms contains a vulnerability in the NLP component, where... High Unreviewed

CVE-2025-23313 was published Aug 26, 2025

NVIDIA NeMo Framework for all platforms contains a vulnerability in the retrieval services... High Unreviewed

CVE-2025-23312 was published Aug 26, 2025

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to Content Spoofing / Text... High Unreviewed

CVE-2025-52218 was published Aug 26, 2025

Delta Electronics COMMGR has Code Injection vulnerability. High Unreviewed

CVE-2025-53419 was published Aug 26, 2025

Maple versions up to and including 13's Maplet framework allows embedded commands to be executed... High Unreviewed

CVE-2010-20120 was published Aug 21, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in SaifuMak Add Custom... High Unreviewed

CVE-2025-30975 was published Aug 20, 2025

The The Soledad theme for WordPress is vulnerable to arbitrary shortcode execution in all... High Unreviewed

CVE-2025-8105 was published Aug 16, 2025

NVIDIA Megatron-LM for all platforms contains a vulnerability in the tools component, where an... High Unreviewed

CVE-2025-23305 was published Aug 13, 2025

NVIDIA Megatron-LM for all platforms contains a vulnerability in the megatron/training/ arguments... High Unreviewed

CVE-2025-23306 was published Aug 13, 2025

NVIDIA Apex for all platforms contains a vulnerability in a Python component where an attacker... High Unreviewed

CVE-2025-23295 was published Aug 13, 2025

NVIDIA Isaac-GR00T for all platforms contains a vulnerability in a Python component where an... High Unreviewed

CVE-2025-23296 was published Aug 13, 2025

NVIDIA Merlin Transformers4Rec for all platforms contains a vulnerability in a python dependency,... High Unreviewed

CVE-2025-23298 was published Aug 13, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in ABB ASPECT.This issue... High Unreviewed

CVE-2025-53187 was published Aug 11, 2025

An Improper Control of Generation of Code (Code Injection) vulnerability affecting DELMIA Apriso... High Unreviewed

CVE-2025-6204 was published Aug 4, 2025

A stack-based buffer overflow vulnerability exists in Synactis PDF In-The-Box ActiveX control ... High Unreviewed

CVE-2013-10057 was published Aug 1, 2025

A code injection vulnerability exists in ProcessMaker Open Source versions 2.x when using the... High Unreviewed

CVE-2013-10035 was published Jul 31, 2025

Previous1…92 Next

Previous 1 2 3 4 5 … 91 92 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,290 advisories