Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,152
Maven
5,000+
npm
3,816
NuGet
692
pip
3,492
Pub
12
RubyGems
902
Rust
900
Swift
38
Unreviewed advisories
All unreviewed
5,000+

24,790 advisories

Loading
In wlan AP FW, there is a possible out of bounds write due to improper input validation. This... Critical Unreviewed
CVE-2025-20646 was published Mar 3, 2025
An issue was discovered on Tuoshi/Dionlink LT15D 4G Wi-Fi devices through M7628NNxlSPv2xUI_v1.0... Critical Unreviewed
CVE-2024-53944 was published Feb 27, 2025
TL-WR845N(UN)_V4_200909 and TL-WR845N(UN)_V4_190219 was discovered to contain a hardcoded... Critical Unreviewed
CVE-2024-57040 was published Feb 27, 2025
The Newscrunch theme for WordPress is vulnerable to arbitrary file uploads due to a missing... Critical Unreviewed
CVE-2025-1307 was published Mar 4, 2025
The Donations Widget plugin for WordPress is vulnerable to PHP Object Injection in all versions... Critical Unreviewed
CVE-2025-0912 was published Mar 4, 2025
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850,... Critical Unreviewed
CVE-2023-26074 was published Mar 13, 2023
OS Command injection vulnerability in D-Link DIR820LA1_FW105B03 allows attackers to escalate... Critical Unreviewed
CVE-2023-25279 was published Mar 13, 2023
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850,... Critical Unreviewed
CVE-2023-26073 was published Mar 13, 2023
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850,... Critical Unreviewed
CVE-2023-26072 was published Mar 13, 2023
OS Command injection vulnerability in D-Link DIR-867 DIR_867_FW1.30B07 allows attackers to... Critical Unreviewed
CVE-2023-24762 was published Mar 13, 2023
The Samsung Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, and Exynos Auto T512... Critical Unreviewed
CVE-2023-24033 was published Mar 13, 2023
Oxidized Web RANCID migration page allows unauthenticated user to gain control over Linux user account Critical
CVE-2025-27590 was published for oxidized-web (RubyGems) Mar 3, 2025
GFast between v2 to v3.2 was discovered to contain a SQL injection vulnerability via the OrderBy... Critical Unreviewed
CVE-2024-55160 was published Feb 27, 2025
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 1280,... Critical Unreviewed
CVE-2023-26076 was published Mar 13, 2023
Missing Authorization vulnerability in NotFound Residential Address Detection allows Privilege... Critical Unreviewed
CVE-2025-27270 was published Mar 3, 2025
SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed
CVE-2025-1874 was published Mar 3, 2025
SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed
CVE-2025-1871 was published Mar 3, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-26535 was published Mar 3, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-27268 was published Mar 3, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-25150 was published Mar 3, 2025
SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed
CVE-2025-1870 was published Mar 3, 2025
Improper Control of Generation of Code ('Code Injection') vulnerability in NotFound Ark Theme... Critical Unreviewed
CVE-2025-26970 was published Mar 3, 2025
SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed
CVE-2025-1872 was published Mar 3, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-26988 was published Mar 3, 2025
SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed
CVE-2025-1873 was published Mar 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database