GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,528
Composer 4,454
Erlang 33
GitHub Actions 22
Go 2,152
Maven 5,328
npm 3,816
NuGet 692
pip 3,492
Pub 12
RubyGems 902
Rust 900
Swift 38

Unreviewed advisories

All unreviewed 246,834

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

488 advisories

Filter by severity

Sort by

Least recently updated

A deserialization of untrusted data vulnerability exists in NI G Web Development Software that... High Unreviewed

CVE-2024-12742 was published Mar 6, 2025

The ZoomSounds - WordPress Wave Audio Player with Playlist plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-13777 was published Mar 5, 2025

Deserialization of Untrusted Data vulnerability in Stiofan Events Calendar for GeoDirectory... High Unreviewed

CVE-2025-26967 was published Mar 3, 2025

Insecure deserialization and improper certificate validation in Checkmk Exchange plugin check-mk... High Unreviewed

CVE-2024-47092 was published Mar 3, 2025

Deserialization of Untrusted Data vulnerability in Brent Jett Assistant allows Object Injection.... High Unreviewed

CVE-2025-26885 was published Mar 3, 2025

Deserialization of Untrusted Data vulnerability in Metagauss ProfileGrid allows Object Injection... High Unreviewed

CVE-2025-26999 was published Mar 3, 2025

The Album Gallery – WordPress Gallery plugin for WordPress is vulnerable to PHP Object Injection... High Unreviewed

CVE-2024-13833 was published Mar 1, 2025

The Hash Form – Drag & Drop Form Builder plugin for WordPress is vulnerable to PHP Object... High Unreviewed

CVE-2024-5085 was published May 23, 2024

The Tabs for WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all... High Unreviewed

CVE-2024-13831 was published Feb 28, 2025

Deserialization of Untrusted Data vulnerability in Themefic Tourfic.This issue affects Tourfic:... High Unreviewed

CVE-2024-29136 was published Mar 19, 2024

A vulnerability in the web-based management interface of certain Cisco Small Business RV Series... High Unreviewed

CVE-2019-15271 was published May 24, 2022

Deserialization of Untrusted Data vulnerability in giuliopanda ADFO allows Object Injection. This... High Unreviewed

CVE-2025-27300 was published Feb 24, 2025

Deserialization of Untrusted Data vulnerability in Nazmul Hasan Robin NHR Options Table Manager... High Unreviewed

CVE-2025-27301 was published Feb 24, 2025

The Mambo Importer plugin for WordPress is vulnerable to PHP Object Injection in all versions up... High Unreviewed

CVE-2024-13899 was published Feb 22, 2025

The Affiliate Links: WordPress Plugin for Link Cloaking and Link Management plugin for WordPress... High Unreviewed

CVE-2024-13556 was published Feb 18, 2025

The usc-e-shop (aka Collne Welcart e-Commerce) plugin before 1.9.36 for WordPress allows Object... High Unreviewed

CVE-2020-28339 was published May 24, 2022

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an... High Unreviewed

CVE-2024-45084 was published Feb 19, 2025

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to... High Unreviewed

CVE-2024-28777 was published Feb 19, 2025

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-28685 was published Mar 29, 2023

This vulnerability allows remote attackers to execute arbitrary code on affected installations of... High Unreviewed

CVE-2022-2561 was published Mar 29, 2023

The Brooklyn theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and... High Unreviewed

CVE-2024-13636 was published Feb 18, 2025

Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: Export). The... High Unreviewed

CVE-2024-20953 was published Feb 17, 2024

Deserialization of untrusted data can occur in the R statistical programming language, on any... High Unreviewed

CVE-2024-27322 was published Apr 29, 2024

In WS_FTP Server version 8.7.0 prior to 8.7.4 and version 8.8.0 prior to 8.8.2, a pre... High Unreviewed

CVE-2023-40044 was published Sep 27, 2023

The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is... High Unreviewed

CVE-2024-13770 was published Feb 13, 2025

Previous 1 2 3 4 5 … 19 20 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

488 advisories