GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,147
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,762
NuGet 678
pip 3,447
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,583

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,453 advisories

Filter by severity

Sort by

Least recently updated

A Remote Code Execution (RCE) vulnerability in /be/rpc.php in Jedox 2020.2.5 allows remote... High Unreviewed

CVE-2022-47879 was published May 12, 2023

Templates containing actions in unquoted HTML attributes (e.g. "attr={{.}}") executed with empty... High Unreviewed

CVE-2023-29400 was published May 11, 2023

Angle brackets (<>) are not considered dangerous characters when inserted into CSS contexts.... High Unreviewed

CVE-2023-24539 was published May 11, 2023

An authenticated parameter injection vulnerability exists in the web-based management interface... High Unreviewed

CVE-2025-23051 was published Jan 14, 2025

An issue found in Agasio-Camera device version not specified allows a remote attacker to execute... Critical Unreviewed

CVE-2023-29862 was published May 15, 2023

The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is... Critical Unreviewed

CVE-2024-42936 was published Jan 21, 2025

HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and... High Unreviewed

CVE-2015-1635 was published May 14, 2022

The The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in... High Unreviewed

CVE-2024-13499 was published Jan 22, 2025

The The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in... High Unreviewed

CVE-2024-13495 was published Jan 22, 2025

Microsoft .NET Framework 2.0 SP2, 3.5.1, and 4, and Silverlight 4 before 4.1.10111, does not... High Unreviewed

CVE-2012-0014 was published May 4, 2022

The Shell in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2,... High Unreviewed

CVE-2012-0175 was published May 4, 2022

The Web Services on Devices API (WSDAPI) in Windows Vista Gold, SP1, and SP2 and Server 2008 Gold... High Unreviewed

CVE-2009-2512 was published May 2, 2022

The Active Template Library (ATL) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2,... High Unreviewed

CVE-2009-2494 was published May 2, 2022

PHPYun before 7.0.2 is vulnerable to code execution through backdoor-restricted arbitrary file... Critical Unreviewed

CVE-2024-54724 was published Jan 9, 2025

Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote... High Unreviewed

CVE-2009-1547 was published May 2, 2022

The XINJE XL5E-16T and XD5E-24R-E programmable logic controllers V3.5.3b-V3.7.2a have a... High Unreviewed

CVE-2024-50954 was published Jan 15, 2025

A improper neutralization of special elements used in a template engine [CWE-1336] in... Moderate Unreviewed

CVE-2023-47542 was published Apr 9, 2024

** DISPUTED ** PHP remote file inclusion vulnerability in includes/functions.php in phpSCMS 0.0... High Unreviewed

CVE-2007-5565 was published May 1, 2022

** DISPUTED ** PHP remote file inclusion vulnerability in lib/classes/offl_nflteam.php in Online... High Unreviewed

CVE-2007-5097 was published May 1, 2022

** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in Nucleus 3.23 allow remote... High Unreviewed

CVE-2006-3136 was published May 1, 2022

** DISPUTED ** PHP remote file inclusion vulnerability in centipaid_class.php in CentiPaid 1.4.3... Moderate Unreviewed

CVE-2006-6975 was published May 1, 2022

** DISPUTED ** PHP remote file inclusion vulnerability in libs/Smarty.class.php in Smarty 2.6.9... High Unreviewed

CVE-2006-7105 was published May 1, 2022

** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in Guestbook Script 1.9 allow... High Unreviewed

CVE-2007-4290 was published May 1, 2022

The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows... High Unreviewed

CVE-2013-3894 was published May 13, 2022

Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute... High Unreviewed

CVE-2005-3302 was published May 1, 2022

Previous 1 2 3 4 5 … 138 139 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,453 advisories