GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,883
Composer 5,065
Erlang 39
GitHub Actions 38
Go 2,700
Maven 6,139
npm 4,328
NuGet 761
pip 4,100
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,776

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,117 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... High Unreviewed

CVE-2025-57201 was published Dec 3, 2025

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... High Unreviewed

CVE-2025-57198 was published Dec 3, 2025

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... High Unreviewed

CVE-2025-57199 was published Dec 3, 2025

An issue in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before Logic Version v6.00 -... High Unreviewed

CVE-2025-60738 was published Nov 20, 2025

A command injection vulnerability has been identified in the command line interface of the HPE... High Unreviewed

CVE-2025-37163 was published Nov 18, 2025

An issue in Intermesh BV GroupOffice vulnerable before v.25.0.47 and 6.8.136 allows a remote... High Unreviewed

CVE-2025-63406 was published Nov 13, 2025

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02... High Unreviewed

CVE-2025-60697 was published Nov 13, 2025

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02... High Unreviewed

CVE-2025-60698 was published Nov 13, 2025

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of... High Unreviewed

CVE-2025-46427 was published Nov 12, 2025

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization... High Unreviewed

CVE-2025-46428 was published Nov 12, 2025

Improper neutralization of special elements used in a command ('command injection') in Visual... High Unreviewed

CVE-2025-62222 was published Nov 11, 2025

Zohocorp ManageEngine Applications Manager versions 178100 and below are vulnerable to... High Unreviewed

CVE-2025-9223 was published Nov 11, 2025

An issue in Agnitum Outpost Security Suite 7.5.3 (3942.608.1810) and 7.6 (3984.693.1842) allows a... High Unreviewed

CVE-2024-57695 was published Nov 11, 2025

A Command Injection vulnerability, resulting from improper file path sanitization (Directory... High Unreviewed

CVE-2025-12155 was published Nov 10, 2025

SPH Engineering UgCS 5.13.0 is vulnerable to Arbitary code execution. High Unreviewed

CVE-2025-60595 was published Oct 29, 2025

jshERP up to commit fbda24da was discovered to contain an unauthenticated remote code execution ... High Unreviewed

CVE-2025-60801 was published Oct 24, 2025

A vulnerability in the web-based management interface of network access point configuration... High Unreviewed

CVE-2025-37146 was published Oct 14, 2025

An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller... High Unreviewed

CVE-2025-37134 was published Oct 14, 2025

An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller... High Unreviewed

CVE-2025-37133 was published Oct 14, 2025

VMware vCenter contains an SMTP header injection vulnerability. A malicious actor with non... High Unreviewed

CVE-2025-41250 was published Sep 29, 2025

A vulnerability in the HTTP API subsystem of Cisco IOS XE Software could allow a remote attacker... High Unreviewed

CVE-2025-20334 was published Sep 24, 2025

In 2wcom IP-4c 2.16, the web interface allows admin and manager users to execute arbitrary code... High Unreviewed

CVE-2025-43953 was published Sep 22, 2025

A command injection vulnerability in COMFAST CF-XR11 (firmware V2.7.2) exists in the multi_pppoe... High Unreviewed

CVE-2025-57293 was published Sep 18, 2025

The cbis_manager Podman container is vulnerable to remote command execution via the /api/plugins... High Unreviewed

CVE-2023-49565 was published Sep 18, 2025

In JetBrains Junie before 252.284.66, 251.284.66, 243.284.66, 252.284.61, 251.284.61, 243.284.61,... High Unreviewed

CVE-2025-59458 was published Sep 17, 2025

Previous1…45 Next

Previous 1 2 3 4 5 … 44 45 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,117 advisories