GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,372
Composer 4,669
Erlang 34
GitHub Actions 26
Go 2,261
Maven 5,512
npm 3,910
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,354

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

106 advisories

Filter by severity

Sort by

Least recently updated

The SAP EP-RUNTIME component in SAP NetWeaver AS JAVA 7.5 allows remote authenticated users to... Moderate Unreviewed

CVE-2016-10304 was published May 13, 2022

Deserialization of Untrusted Data vulnerability in Melapress MelaPress Login Security allows... Moderate Unreviewed

CVE-2025-39565 was published Apr 16, 2025

Subnet Solutions PowerSYSTEM Center is affected by a mishandling of exceptional conditions... Moderate Unreviewed

CVE-2025-31935 was published Apr 11, 2025

Deserialization of Untrusted Data vulnerability in WP Sunshine Sunshine Photo Cart.This issue... Moderate Unreviewed

CVE-2024-30221 was published Mar 28, 2024

A security flaw exists in WildFly and JBoss Enterprise Application Platform (EAP) within the... Moderate Unreviewed

CVE-2025-2251 was published Apr 7, 2025

Deserialization of Untrusted Data vulnerability in WP All Import Import Users from CSV.This issue... Moderate Unreviewed

CVE-2024-32431 was published Apr 15, 2024

Welcart e-Commerce 2.11.6 and earlier versions contains an untrusted data deserialization... Moderate Unreviewed

CVE-2025-27130 was published Apr 1, 2025

In writeUserLP of UserManagerService.java, device policies are serialized with an incorrect tag... Moderate Unreviewed

CVE-2024-0047 was published Mar 11, 2024

A vulnerability, which was classified as critical, was found in yiisoft Yii2 up to 2.0.39. This... Moderate Unreviewed

CVE-2025-2690 was published Mar 24, 2025

PixelYourSite - Your smart PIXEL (TAG) and API Manager 10.1.1.1 was found to be vulnerable.... Moderate Unreviewed

CVE-2025-0769 was published Feb 28, 2025

WP Activity Log 5.3.2 was found to be vulnerable. Unvalidated user input is used directly in an... Moderate Unreviewed

CVE-2025-0767 was published Feb 27, 2025

A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected... Moderate Unreviewed

CVE-2025-1177 was published Feb 11, 2025

A vulnerability was found in dayrui XunRuiCMS up to 4.6.4. It has been declared as critical. This... Moderate Unreviewed

CVE-2025-1186 was published Feb 12, 2025

Utilization of a module presented a security risk by allowing the deserialization of untrusted... Moderate Unreviewed

CVE-2021-27017 was published Feb 7, 2025

NVIDIA RAPIDS contains a vulnerability in cuDF and cuML, where a user could cause a... Moderate Unreviewed

CVE-2024-0140 was published Jan 28, 2025

A vulnerability was found in wangl1989 mysiteforme 1.0 and classified as critical. Affected by... Moderate Unreviewed

CVE-2024-13136 was published Jan 5, 2025

Deserialization of Untrusted Data vulnerability in Drupal Node export allows Object Injection... Moderate Unreviewed

CVE-2024-13295 was published Jan 9, 2025

Deserialization of Untrusted Data vulnerability in Drupal Mailjet allows Object Injection.This... Moderate Unreviewed

CVE-2024-13296 was published Jan 9, 2025

Deserialization of Untrusted Data vulnerability in Drupal Eloqua allows Object Injection.This... Moderate Unreviewed

CVE-2024-13297 was published Jan 9, 2025

Deserialization of Untrusted Data vulnerability in Drupal Monster Menus allows Object Injection... Moderate Unreviewed

CVE-2024-13288 was published Jan 9, 2025

Vulnerability of serialization/deserialization mismatch in the vibration framework.Successful... Moderate Unreviewed

CVE-2023-52357 was published Feb 18, 2024

In initiateVenueUrlAnqpQueryInternal of sta_iface.cpp, there is a possible out of bounds read due... Moderate Unreviewed

CVE-2023-21206 was published Jun 28, 2023

MENDELSON AS4 before 2024 B376 has a client-side vulnerability when a trading partner provides... Moderate Unreviewed

CVE-2024-39334 was published Jun 24, 2024

Limited remote code execution with privilege of a NetworkService Account access in Citrix Session... Moderate Unreviewed

CVE-2024-8069 was published Nov 12, 2024

A Potential DOS Vulnerability exists in CERT VINCE software prior to version 3.0.8. An... Moderate Unreviewed

CVE-2024-9953 was published Oct 15, 2024

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

106 advisories