Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

106,520 advisories

Loading
Incorrect Use of Privileged APIs vulnerability in NomySost Information Technology Training and... High Unreviewed
CVE-2025-1161 was published Dec 10, 2025
A privilege escalation vulnerability exists in Google Cloud's Dialogflow CX. Dialogflow agent... High Unreviewed
CVE-2025-12952 was published Dec 10, 2025
A remote code execution (RCE) vulnerability exists in Google Cloud Data Fusion. A user with... High Unreviewed
CVE-2025-9571 was published Dec 10, 2025
The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Path Traversal in all... High Unreviewed
CVE-2025-13339 was published Dec 10, 2025
ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Access... High Unreviewed
CVE-2025-61811 was published Dec 10, 2025
ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Input... High Unreviewed
CVE-2025-61812 was published Dec 10, 2025
ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Restriction... High Unreviewed
CVE-2025-61813 was published Dec 10, 2025
ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by a Deserialization of... High Unreviewed
CVE-2025-61810 was published Dec 10, 2025
MiniDVBLinux 5.4 contains an unauthenticated vulnerability in the tv_action.sh script that allows... High Unreviewed
CVE-2023-53773 was published Dec 9, 2025
Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and... High Unreviewed
CVE-2025-64899 was published Dec 9, 2025
Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and... High Unreviewed
CVE-2025-64785 was published Dec 9, 2025
MiniDVBLinux 5.4 contains an unauthenticated configuration download vulnerability that allows... High Unreviewed
CVE-2023-53770 was published Dec 9, 2025
STVS ProVision 5.9.10 contains a path traversal vulnerability that allows authenticated attackers... High Unreviewed
CVE-2021-47724 was published Dec 9, 2025
MiniDVBLinux 5.4 contains an arbitrary file disclosure vulnerability that allows attackers to... High Unreviewed
CVE-2023-53772 was published Dec 9, 2025
Selea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote... High Unreviewed
CVE-2021-47727 was published Dec 9, 2025
Selea Targa IP OCR-ANPR Camera contains a cross-site request forgery vulnerability that allows... High Unreviewed
CVE-2021-47730 was published Dec 9, 2025
OpenBMCS 2.4 contains an information disclosure vulnerability that allows unauthenticated... High Unreviewed
CVE-2021-47718 was published Dec 9, 2025
COMMAX WebViewer ActiveX Control 2.1.4.5 contains a buffer overflow vulnerability that allows... High Unreviewed
CVE-2021-47719 was published Dec 9, 2025
COMMAX Biometric Access Control System 1.0.0 contains an authentication bypass vulnerability that... High Unreviewed
CVE-2021-47706 was published Dec 9, 2025
OpenBMCS 2.4 contains an SQL injection vulnerability that allows authenticated attackers to... High Unreviewed
CVE-2021-47704 was published Dec 9, 2025
OpenBMCS 2.4 allows an attacker to escalate privileges from a read user to an admin user by... High Unreviewed
CVE-2021-47701 was published Dec 9, 2025
COMMAX UMS Client ActiveX Control 1.7.0.2 contains a heap-based buffer overflow vulnerability... High Unreviewed
CVE-2021-47705 was published Dec 9, 2025
COMMAX Smart Home System is a smart IoT home solution that allows an unauthenticated attacker to... High Unreviewed
CVE-2021-47710 was published Dec 9, 2025
COMMAX Smart Home System allows an unauthenticated attacker to change configuration and cause... High Unreviewed
CVE-2021-47709 was published Dec 9, 2025
Improper neutralization of special elements used in a command ('command injection') in Copilot... High Unreviewed
CVE-2025-64671 was published Dec 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database