GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,657
Composer 5,011
Erlang 39
GitHub Actions 38
Go 2,651
Maven 6,108
npm 4,279
NuGet 760
pip 4,066
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,293

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

105,608 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-12482 was published Nov 16, 2025

A vulnerability was found in D-Link DIR-816L 2_06_b09_beta. This vulnerability affects the... High Unreviewed

CVE-2025-13190 was published Nov 15, 2025

A vulnerability was determined in D-Link DIR-816L 2_06_b09_beta. This issue affects the function... High Unreviewed

CVE-2025-13191 was published Nov 15, 2025

A vulnerability has been found in D-Link DIR-816L 2_06_b09_beta. This affects the function... High Unreviewed

CVE-2025-13189 was published Nov 15, 2025

Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store... High Unreviewed

CVE-2025-63891 was published Nov 14, 2025

An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1... High Unreviewed

CVE-2025-54345 was published Nov 14, 2025

Positive Technologies MaxPatrol 8 and XSpider contain a remote denial-of-service vulnerability in... High Unreviewed

CVE-2021-4467 was published Nov 15, 2025

A vulnerability was detected in D-Link DIR-816L 2_06_b09_beta. Affected by this vulnerability is... High Unreviewed

CVE-2025-13188 was published Nov 15, 2025

General Industrial Controls Lynx+ Gateway is vulnerable to a weak password requirement... High Unreviewed

CVE-2025-55034 was published Nov 15, 2025

General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web... High Unreviewed

CVE-2025-59780 was published Nov 15, 2025

General Industrial Controls Lynx+ Gateway is vulnerable to a cleartext transmission vulnerability... High Unreviewed

CVE-2025-62765 was published Nov 15, 2025

Ubee EVW3226 cable modem/routers firmware versions up to and including 1.0.20 store configuration... High Unreviewed

CVE-2016-15056 was published Nov 15, 2025

Netis ADSL Router DL4322D firmware RTK 2.1.1 contains a buffer overflow vulnerability in the... High Unreviewed

CVE-2018-25125 was published Nov 15, 2025

PLANEX CS-QP50F-ING2 smart cameras expose a configuration backup interface over HTTP that does... High Unreviewed

CVE-2021-4468 was published Nov 15, 2025

ReQuest Serious Play F3 Media Server versions 7.0.3.4968 (Pro), 7.0.2.4954, 6.5.2.4954, 6.4.2... High Unreviewed

CVE-2021-4465 was published Nov 15, 2025

Denver SHO-110 IP cameras expose a secondary HTTP service on TCP port 8001 that provides access... High Unreviewed

CVE-2021-4469 was published Nov 15, 2025

TG8 Firewall exposes a directory such as /data/ over HTTP without authentication. This directory... High Unreviewed

CVE-2021-4471 was published Nov 15, 2025

IPCop versions up to and including 2.1.9 contain an authenticated remote code execution... High Unreviewed

CVE-2021-4466 was published Nov 15, 2025

Vodafone H500s devices running firmware v3.5.10 (hardware model Sercomm VFH500) expose the WiFi... High Unreviewed

CVE-2022-4985 was published Nov 15, 2025

The Brightpick Mission Control web application exposes hardcoded credentials in its client-side... High Unreviewed

CVE-2025-64308 was published Nov 15, 2025

The Brightpick Internal Logic Control web interface is accessible without requiring user... High Unreviewed

CVE-2025-64307 was published Nov 15, 2025

Brightpick Mission Control discloses device telemetry, configuration, and credential information... High Unreviewed

CVE-2025-64309 was published Nov 15, 2025

The vulnerability, if exploited, could allow an authenticated miscreant (with privilege of ... High Unreviewed

CVE-2025-8386 was published Nov 15, 2025

The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files... High Unreviewed

CVE-2025-9317 was published Nov 15, 2025

The Kiwire Captive Portal contains a blind SQL injection in the nas-id parameter, allowing for... High Unreviewed

CVE-2025-11188 was published Oct 10, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

105,608 advisories