GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,147
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,762
NuGet 678
pip 3,447
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,583

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,229 advisories

Filter by severity

Sort by

Least recently updated

pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2023-27112 was published Jan 22, 2025

pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2023-27113 was published Jan 22, 2025

Vulnerability in the Oracle Hospitality OPERA 5 product of Oracle Hospitality Applications ... Critical Unreviewed

CVE-2025-21547 was published Jan 21, 2025

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Agile... Critical Unreviewed

CVE-2025-21556 was published Jan 21, 2025

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component:... Critical Unreviewed

CVE-2025-21524 was published Jan 21, 2025

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)... Critical Unreviewed

CVE-2025-21535 was published Jan 21, 2025

Northern.tech Mender Client 4.x before 4.0.5 has Insecure Permissions. Critical Unreviewed

CVE-2024-55959 was published Jan 21, 2025

The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is... Critical Unreviewed

CVE-2024-42936 was published Jan 21, 2025

The script input feature of SpagoBI 3.5.1 allows arbitrary code execution. Critical Unreviewed

CVE-2024-54794 was published Jan 21, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-22553 was published Jan 21, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in UkrSolution Barcode Scanner with... Critical Unreviewed

CVE-2025-22723 was published Jan 21, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2024-51818 was published Jan 21, 2025

Incorrect Privilege Assignment vulnerability in NotFound Homey Login Register allows Privilege... Critical Unreviewed

CVE-2024-51888 was published Jan 21, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Fancy Product Designer.... Critical Unreviewed

CVE-2024-51919 was published Jan 21, 2025

Deserialization of Untrusted Data vulnerability in NotFound ARPrice allows Object Injection. This... Critical Unreviewed

CVE-2024-49688 was published Jan 21, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2024-49655 was published Jan 21, 2025

Incorrect Privilege Assignment vulnerability in NotFound Easy Real Estate allows Privilege... Critical Unreviewed

CVE-2024-32555 was published Jan 21, 2025

The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated... Critical Unreviewed

CVE-2025-0585 was published Jan 20, 2025

IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.1.0.0, and 6.2.0.0 could allow a... Critical Unreviewed

CVE-2024-41783 was published Jan 19, 2025

IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.1.0.0, and 6.2.0.0 could allow an... Critical Unreviewed

CVE-2024-38337 was published Jan 19, 2025

The Adifier System plugin for WordPress is vulnerable to privilege escalation via account... Critical Unreviewed

CVE-2024-13375 was published Jan 18, 2025

In endCallForSubscriber of PhoneInterfaceManager.java, there is a possible way to prevent access... Critical Unreviewed

CVE-2017-13322 was published Jan 18, 2025

A new feature to prevent Firmware downgrades was recently added to some Lexmark products. A... Critical Unreviewed

CVE-2023-50738 was published Jan 17, 2025

WeGIA < 3.2.0 is vulnerable to Incorrect Access Control in controle/control.php. The application... Critical Unreviewed

CVE-2024-57032 was published Jan 17, 2025

WeGIA < 3.2.0 is vulnerable to SQL Injection in /funcionario/remuneracao.php via the... Critical Unreviewed

CVE-2024-57031 was published Jan 17, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

21,229 advisories