GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,883
Composer 5,065
Erlang 39
GitHub Actions 38
Go 2,700
Maven 6,139
npm 4,328
NuGet 761
pip 4,100
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,776

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,651 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... High Unreviewed

CVE-2025-57201 was published Dec 3, 2025

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... High Unreviewed

CVE-2025-57198 was published Dec 3, 2025

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... High Unreviewed

CVE-2025-57199 was published Dec 3, 2025

AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an... Moderate Unreviewed

CVE-2025-57200 was published Dec 3, 2025

A vulnerability has been found in D-Link R15 (AX1500) 1.20.01 and below. By manipulating the... Critical Unreviewed

CVE-2025-60854 was published Dec 2, 2025

An issue in Blurams Lumi Security Camera (A31C) v23.1227.472.2926 allows local physical attackers... Moderate Unreviewed

CVE-2025-63674 was published Nov 25, 2025

iStats contains an insecure XPC service that allows local, unprivileged users to escalate their... Critical Unreviewed

CVE-2025-11921 was published Nov 24, 2025

A vulnerability was identified in D-Link DIR-852 1.00. This issue affects some unknown processing... Moderate Unreviewed

CVE-2025-13562 was published Nov 23, 2025

An issue in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before Logic Version v6.00 -... High Unreviewed

CVE-2025-60738 was published Nov 20, 2025

The read function in file thinkphp\library\think\template\driver\File.php in ThinkPHP 5.0.24... Moderate Unreviewed

CVE-2025-63888 was published Nov 20, 2025

pnetlab 5.3.11 is vulnerable to Command Injection via the qemu_options parameter. Moderate Unreviewed

CVE-2025-63749 was published Nov 18, 2025

A vulnerability in the command line interface of affected devices could allow an authenticated... Moderate Unreviewed

CVE-2025-37162 was published Nov 18, 2025

A command injection vulnerability has been identified in the command line interface of the HPE... High Unreviewed

CVE-2025-37163 was published Nov 18, 2025

A remote command execution (RCE) vulnerability was discovered in all H3C ERG3/ERG5 series routers... Moderate Unreviewed

CVE-2025-63258 was published Nov 18, 2025

A code injection vulnerability exists in baryhuang/mcp-server-aws-resources-python 0.1.0 that... Moderate Unreviewed

CVE-2025-63604 was published Nov 18, 2025

A command injection vulnerability exists in the MCP Data Science Server's (reading-plus-ai/mcp... Moderate Unreviewed

CVE-2025-63603 was published Nov 18, 2025

GitLab has remediated an issue in GitLab EE affecting all versions from 17.8 before 18.3.6, 18.4... Low Unreviewed

CVE-2025-6945 was published Nov 15, 2025

A command injection vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c... Moderate Unreviewed

CVE-2025-60702 was published Nov 13, 2025

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware... Moderate Unreviewed

CVE-2025-60672 was published Nov 13, 2025

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware... Moderate Unreviewed

CVE-2025-60676 was published Nov 13, 2025

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware... Moderate Unreviewed

CVE-2025-60673 was published Nov 13, 2025

A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0... Moderate Unreviewed

CVE-2025-60675 was published Nov 13, 2025

An issue in Intermesh BV GroupOffice vulnerable before v.25.0.47 and 6.8.136 allows a remote... High Unreviewed

CVE-2025-63406 was published Nov 13, 2025

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02... Moderate Unreviewed

CVE-2025-60701 was published Nov 13, 2025

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02... Moderate Unreviewed

CVE-2025-60700 was published Nov 13, 2025

Previous1…107 Next

Previous 1 2 3 4 5 … 106 107 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,651 advisories