GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,499
Composer 4,829
Erlang 36
GitHub Actions 33
Go 2,446
Maven 5,843
npm 4,065
NuGet 723
pip 3,866
Pub 12
RubyGems 943
Rust 1,009
Swift 39

Unreviewed advisories

All unreviewed 266,043

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

102,373 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The School Management System for Wordpress plugin for WordPress is vulnerable to SQL Injection... High Unreviewed

CVE-2024-12612 was published Aug 16, 2025

The AL Pack plugin for WordPress is vulnerable to unauthorized access due to a missing capability... High Unreviewed

CVE-2025-7664 was published Aug 16, 2025

The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to unauthorized... High Unreviewed

CVE-2025-6080 was published Aug 16, 2025

The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to Local File... High Unreviewed

CVE-2025-3671 was published Aug 16, 2025

The School Management System for Wordpress plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2025-6079 was published Aug 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in iThemes ServerBuddy by PluginBuddy.Com allows... High Unreviewed

CVE-2025-49895 was published Aug 16, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-8092 was published Aug 15, 2025

On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker... High Unreviewed

CVE-2021-21000 was published May 24, 2022

CODESYS V2 Web-Server before 1.1.9.20 has a a Buffer Copy without Checking the Size of the Input. High Unreviewed

CVE-2021-30191 was published May 24, 2022

In the CODESYS V2 web server prior to V1.1.9.22 crafted web server requests can trigger a parser... High Unreviewed

CVE-2021-34585 was published May 24, 2022

In the CODESYS V2 web server prior to V1.1.9.22 crafted web server requests may cause a Null... High Unreviewed

CVE-2021-34586 was published May 24, 2022

CODESYS V2 runtime system SP before 2.4.7.55 has a Heap-based Buffer Overflow. High Unreviewed

CVE-2021-30186 was published May 24, 2022

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2023-33322 was published Mar 26, 2024

MikroTik RouterOS before 6.43.12 (stable) and 6.42.12 (long-term) is vulnerable to an... High Unreviewed

CVE-2019-3924 was published May 13, 2022

HashiCorp's go-getter library subdirectory download feature is vulnerable to symlink attacks... High Unreviewed

CVE-2025-8959 was published Aug 15, 2025

Crafted web server requests may cause a heap-based buffer overflow and could therefore trigger a... High Unreviewed

CVE-2021-34583 was published May 24, 2022

CODESYS V2 runtime system before 2.4.7.55 has Improper Input Validation. High Unreviewed

CVE-2021-30195 was published May 24, 2022

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed

CVE-2025-53737 was published Aug 12, 2025

A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to... High Unreviewed

CVE-2025-8088 was published Aug 8, 2025

Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed

CVE-2025-1051 was published Jun 2, 2025

Missing Authorization vulnerability in Drupal Config Pages allows Forceful Browsing.This issue... High Unreviewed

CVE-2025-8361 was published Aug 15, 2025

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute... High Unreviewed

CVE-2025-53741 was published Aug 12, 2025

An issue was discovered in Malwarebytes before 4.6.14.326 and before 5.1.5.116 (and Nebula 2020... High Unreviewed

CVE-2023-43692 was published Aug 14, 2025

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code... High Unreviewed

CVE-2025-53732 was published Aug 12, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-49897 was published Aug 15, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

102,373 advisories