GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,546
Composer 4,835
Erlang 36
GitHub Actions 33
Go 2,452
Maven 5,863
npm 4,077
NuGet 723
pip 3,868
Pub 12
RubyGems 943
Rust 1,010
Swift 39

Unreviewed advisories

All unreviewed 266,589

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

26,627 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a... Critical Unreviewed

CVE-2025-53766 was published Aug 12, 2025

Untrusted pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to... Critical Unreviewed

CVE-2025-50165 was published Aug 12, 2025

Missing authorization in Remote Desktop Server allows an unauthorized attacker to perform... Critical Unreviewed

CVE-2025-50171 was published Aug 12, 2025

Improper input validation in the Linux kernel-mode driver for some Intel(R) 800 Series Ethernet... Critical Unreviewed

CVE-2025-24325 was published Aug 12, 2025

An issue was discovered in BMC Control-M 9.0.21.300. When Control-M Server has a database... Critical Unreviewed

CVE-2025-48709 was published Aug 7, 2025

ruby-jwt v3.0.0.beta1 was discovered to contain weak encryption. NOTE: the Supplier's perspective... Critical Unreviewed

CVE-2025-45765 was published Aug 7, 2025

A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V5.6.0), RUGGEDCOM ROS... Critical Unreviewed

CVE-2021-42018 was published Mar 9, 2022

A vulnerability has been identified in RUGGEDCOM i800, RUGGEDCOM i800NC, RUGGEDCOM i801,... Critical Unreviewed

CVE-2023-24845 was published Aug 8, 2023

A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V3.2).... Critical Unreviewed

CVE-2025-40746 was published Aug 12, 2025

A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V5.6.0), RUGGEDCOM ROS... Critical Unreviewed

CVE-2021-42019 was published Mar 9, 2022

The B Blocks plugin for WordPress is vulnerable to Privilege Escalation due to missing... Critical Unreviewed

CVE-2025-8059 was published Aug 12, 2025

SAP Landscape Transformation (SLT) allows an attacker with user privileges to exploit a... Critical Unreviewed

CVE-2025-42950 was published Aug 12, 2025

SAP S/4HANA allows an attacker with user privileges to exploit a vulnerability in the function... Critical Unreviewed

CVE-2025-42957 was published Aug 12, 2025

Kernel software installed and running inside an untrusted/rich execution environment (REE) could... Critical Unreviewed

CVE-2025-6573 was published Aug 9, 2025

ModelCache for LLM through v0.2.0 was discovered to contain an deserialization vulnerability via... Critical Unreviewed

CVE-2025-45146 was published Aug 11, 2025

PhpTax version 0.8 contains a remote code execution vulnerability in drawimage.php. The pfilez... Critical Unreviewed

CVE-2012-10037 was published Aug 11, 2025

Auxilium RateMyPet contains an unauthenticated arbitrary file upload vulnerability in... Critical Unreviewed

CVE-2012-10038 was published Aug 11, 2025

ZEN Load Balancer versions 2.0 and 3.0-rc1 contain a command injection vulnerability in content2... Critical Unreviewed

CVE-2012-10039 was published Aug 11, 2025

Openfiler v2.x contains a command injection vulnerability in the system.html page. The device... Critical Unreviewed

CVE-2012-10040 was published Aug 11, 2025

Privileged OpenBao Operator May Execute Code on the Underlying Host Critical

CVE-2025-54997 was published for github.com/openbao/openbao (Go) Aug 8, 2025

Official Document Management System developed by 2100 Technology has an Authentication Bypass... Critical Unreviewed

CVE-2025-8853 was published Aug 11, 2025

FoxCMS <=v1.2.5 is vulnerable to Code Execution in admin/template_file/editFile.html. Critical Unreviewed

CVE-2025-50692 was published Aug 7, 2025

Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of... Critical Unreviewed

CVE-2012-10053 was published Aug 8, 2025

CuteFlow version 2.11.2 and earlier contains an arbitrary file upload vulnerability in the... Critical Unreviewed

CVE-2012-10050 was published Aug 8, 2025

WebPageTest version 2.6 and earlier contains an arbitrary file upload vulnerability in the... Critical Unreviewed

CVE-2012-10049 was published Aug 8, 2025

Previous 1 2 3 4 5 6 7 8 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

26,627 advisories