GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,144
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,760
NuGet 678
pip 3,446
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,493

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

242,493 advisories

Filter by severity

Sort by

Least recently updated

The Linear plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to... Moderate Unreviewed

CVE-2024-13709 was published Jan 25, 2025

The ThemeREX Addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up... High Unreviewed

CVE-2025-0682 was published Jan 25, 2025

The Plethora Plugins Tabs + Accordions plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-13721 was published Jan 25, 2025

7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass... High Unreviewed

CVE-2025-0411 was published Jan 25, 2025

The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient... Critical Unreviewed

CVE-2025-0357 was published Jan 25, 2025

A Reflected Cross-Site Scripting (XSS) vulnerability exists in the search.php file of the Online... Moderate Unreviewed

CVE-2024-57326 was published Jan 24, 2025

OpenImageIO v3.1.0.0dev was discovered to contain a segmentation violation via the component ... Moderate Unreviewed

CVE-2024-55193 was published Jan 24, 2025

HortusFox v3.9 contains a stored XSS vulnerability in the "Add Plant" function. The name input... Moderate Unreviewed

CVE-2024-57329 was published Jan 24, 2025

A DLL hijacking vulnerability in iTop VPN v16.0 allows attackers to execute arbitrary code via... High Unreviewed

CVE-2024-53588 was published Jan 24, 2025

A SQL Injection vulnerability exists in the login form of Online Food Ordering System v1.0. The... Critical Unreviewed

CVE-2024-57328 was published Jan 24, 2025

SunGrow WiNet-SV200.001.00.P027 and earlier versions is vulnerable to heap-based buffer overflow... Unknown Unreviewed

CVE-2024-50698 was published Jan 25, 2025

Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed

CVE-2025-21262 was published Jan 25, 2025

In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when decrypting MQTT messages, the code... Unknown Unreviewed

CVE-2024-50697 was published Jan 25, 2025

Cross Site Scripting vulnerability in Wallos v.2.41.0 allows a remote attacker to execute... Moderate Unreviewed

CVE-2024-57386 was published Jan 24, 2025

In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when copying the timestamp read from an... Unknown Unreviewed

CVE-2024-50694 was published Jan 25, 2025

SunGrow WiNet-SV200.001.00.P027 and earlier versions is vulnerable to stack-based buffer overflow... Unknown Unreviewed

CVE-2024-50695 was published Jan 25, 2025

SunGrow WiNet-SV200.001.00.P027 and earlier versions contains a hardcoded password that can be... Unknown Unreviewed

CVE-2024-50690 was published Jan 25, 2025

SunGrow WiNet-SV200.001.00.P027 and earlier versions contains hardcoded MQTT credentials that... Unknown Unreviewed

CVE-2024-50692 was published Jan 25, 2025

An issue was discovered in Centreon centreon-web 24.10.x before 24.10.3, 24.04.x before 24.04.9,... Critical Unreviewed

CVE-2024-55573 was published Jan 24, 2025

KWHotel 0.47 is vulnerable to CSV Formula Injection in the add guest function. Moderate Unreviewed

CVE-2023-46400 was published Jan 24, 2025

In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed

CVE-2023-20708 was published May 16, 2023

Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password... High Unreviewed

CVE-2025-21102 was published Jan 8, 2025

In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed

CVE-2023-20709 was published May 16, 2023

In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed

CVE-2023-20704 was published May 16, 2023

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed

CVE-2024-24423 was published Jan 22, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

242,493 advisories