Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,319
Erlang
31
GitHub Actions
21
Go
2,077
Maven
5,000+
npm
3,746
NuGet
674
pip
3,435
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

94,689 advisories

Loading
An unauthenticated remote attacker can cause a DoS in the controller due to uncontrolled resource... High Unreviewed
CVE-2018-25108 was published Jan 16, 2025
A weak authentication in Fortinet FortiManager Cloud, FortiAnalyzer versions 7.6.0 through 7.6.1,... High Unreviewed
CVE-2024-50563 was published Jan 16, 2025
The Passwords Manager plugin for WordPress is vulnerable to unauthorized modification of data due... High Unreviewed
CVE-2024-12614 was published Jan 16, 2025
The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... High Unreviewed
CVE-2024-12613 was published Jan 16, 2025
A incorrect privilege assignment in Fortinet FortiAnalyzer versions 7.4.0 through 7.4.3, 7.2.0... High Unreviewed
CVE-2024-45331 was published Jan 16, 2025
The airPASS from NetVision Information has an OS Command Injection vulnerability, allowing remote... High Unreviewed
CVE-2025-0457 was published Jan 16, 2025
A vulnerability has been found in D-Link DIR-823X 240126/240802 and classified as critical.... High Unreviewed
CVE-2025-0492 was published Jan 16, 2025
An issue in the native clients for Amazon WorkSpaces Clients when running PCoIP protocol may... High Unreviewed
CVE-2025-0501 was published Jan 15, 2025
An issue in the native clients for Amazon WorkSpaces, Amazon AppStream 2.0, and Amazon DCV... High Unreviewed
CVE-2025-0500 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... High Unreviewed
CVE-2024-7085 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22778 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22755 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22754 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22764 was published Jan 15, 2025
Path Traversal vulnerability in ElementInvader ElementInvader Addons for Elementor allows PHP... High Unreviewed
CVE-2025-22786 was published Jan 15, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22799 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22752 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22776 was published Jan 15, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Johan Ström Background Control allows Path... High Unreviewed
CVE-2025-22784 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22753 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22793 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22760 was published Jan 15, 2025
An untrusted search path vulnerability in testinitsigs.exe as used in Bitdefender Antivirus Free... High Unreviewed
CVE-2020-8094 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22766 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22765 was published Jan 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database