GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,730
Composer 5,030
Erlang 39
GitHub Actions 38
Go 2,670
Maven 6,116
npm 4,296
NuGet 760
pip 4,075
Pub 12
RubyGems 957
Rust 1,058
Swift 45

Unreviewed advisories

All unreviewed 277,901

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

760 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The QVidium Opera11 device (firmware version 2.9.0-Ax4x-opera11) is vulnerable to Remote Code... Critical Unreviewed

CVE-2025-63213 was published Nov 19, 2025

An OS command injection vulnerability exists in MiniDVBLinux version 5.4 and earlier. The system... Critical Unreviewed

CVE-2025-25038 was published Jun 20, 2025

An OS command injection vulnerability exists in the Edimax EW-7438RPn firmware version 1.13 and... Critical Unreviewed

CVE-2025-34024 was published Jun 20, 2025

An OS command injection vulnerability exists in sar2html version 3.2.2 and prior via the plot... Critical Unreviewed

CVE-2025-34030 was published Jun 20, 2025

A remote command injection vulnerability exists in the confirm.php interface of the WIFISKY 7... Critical Unreviewed

CVE-2025-34044 was published Jun 26, 2025

An unauthenticated command injection vulnerability exists in AVTECH DVR devices via Search.cgi... Critical Unreviewed

CVE-2025-34054 was published Jul 1, 2025

An OS command injection vulnerability exists in various models of E-Series Linksys routers via... Critical Unreviewed

CVE-2025-34037 was published Jun 26, 2025

An OS command injection vulnerability exists in the OptiLink ONT1GEW GPON router firmware version... Critical Unreviewed

CVE-2025-34049 was published Jun 26, 2025

An authenticated command injection vulnerability exists in the Beward N100 IP Camera firmware... Critical Unreviewed

CVE-2025-34042 was published Jun 26, 2025

A SQL Injection vulnerability on an endpoint in BEIMS Contractor Web, a legacy product that is no... Critical Unreviewed

CVE-2025-10460 was published Nov 17, 2025

An unauthenticated remote command execution vulnerability exists in Samsung WLAN AP WEA453e... Critical Unreviewed

CVE-2025-34068 was published Jul 15, 2025

Missing Initial Password Change.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5. Critical Unreviewed

CVE-2025-12285 was published Oct 26, 2025

Lack of application manifest sanitation could lead to potential stored XSS.This issue affects BLU... Critical Unreviewed

CVE-2025-12001 was published Oct 21, 2025

Mail Configuration File Manipulation + Command Execution.This issue affects BLU-IC2: through 1.19... Critical Unreviewed

CVE-2025-12275 was published Oct 26, 2025

A template injection vulnerability exists in Sawtooth Software’s Lighthouse Studio versions prior... Critical Unreviewed

CVE-2025-34300 was published Jul 16, 2025

A correctness issue was addressed with improved checks. This issue is fixed in tvOS 26, Safari 26... Critical Unreviewed

CVE-2025-43342 was published Sep 16, 2025

Format string vulnerability in Dropbear SSH before 2016.74 allows remote attackers to execute... Critical Unreviewed

CVE-2016-7406 was published May 17, 2022

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.5, macOS... Critical Unreviewed

CVE-2025-30452 was published Apr 1, 2025

Improper input validation of octal strings in Python stdlib ipaddress 3.10 and below allows... Critical Unreviewed

CVE-2021-29921 was published May 24, 2022

Apache Traffic Server forwards malformed HTTP chunked trailer section to origin servers. This can... Critical Unreviewed

CVE-2024-35161 was published Jul 26, 2024

Zabbix Frontend provides a feature that allows admins to maintain the installation and ensure... Critical Unreviewed

CVE-2022-43515 was published Dec 5, 2022

Multiple memory corruption issues were addressed with improved input validation. This issue is... Critical Unreviewed

CVE-2025-43234 was published Jul 30, 2025

An input validation issue was addressed with improved memory handling. This issue is fixed in... Critical Unreviewed

CVE-2025-31281 was published Jul 30, 2025

This issue was addressed by removing the vulnerable code. This issue is fixed in tvOS 26, watchOS... Critical Unreviewed

CVE-2025-43347 was published Sep 16, 2025

This issue was addressed with improved input validation. This issue is fixed in macOS Sequoia 15... Critical Unreviewed

CVE-2025-43253 was published Jul 30, 2025

Previous1…31 Next

Previous 1 2 3 4 5 … 30 31 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

760 advisories