Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

106,810 advisories

Loading
The SWD debug interface on the Growatt ShineLan-X communication dongle is available by default,... High Unreviewed
CVE-2025-36753 was published Dec 13, 2025
The WP3D Model Import Viewer plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2025-13094 was published Dec 13, 2025
The WP Directory Kit plugin for WordPress is vulnerable to SQL Injection via the 'hide_fields'... High Unreviewed
CVE-2025-13089 was published Dec 13, 2025
The Postem Ipsum plugin for WordPress is vulnerable to unauthorized modification of data to... High Unreviewed
CVE-2025-14397 was published Dec 13, 2025
The Extensive VC Addons for WPBakery page builder plugin for WordPress is vulnerable to Local... High Unreviewed
CVE-2025-14475 was published Dec 13, 2025
The Doubly – Cross Domain Copy Paste for WordPress plugin for WordPress is vulnerable to PHP... High Unreviewed
CVE-2025-14476 was published Dec 13, 2025
The vulnerability arises when a client fetches a tools’ JSON specification, known as a Manual,... High Unreviewed
CVE-2025-14542 was published Dec 13, 2025
ShineLan-X contains a stored cross site scripting (XSS) vulnerability in the Plant Name field. A... High Unreviewed
CVE-2025-36750 was published Dec 13, 2025
ShineLan-X contains a stored cross site scripting (XSS) vulnerability in the local configuration... High Unreviewed
CVE-2025-36748 was published Dec 13, 2025
The افزونه پیامک ووکامرس فوق حرفه ای (جدید) payamito sms woocommerce plugin for WordPress is... High Unreviewed
CVE-2025-13077 was published Dec 13, 2025
OpenPLC_V3 is vulnerable to a cross-site request forgery (CSRF) attack due to the absence of... High Unreviewed
CVE-2025-13970 was published Dec 13, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use... High Unreviewed
CVE-2025-39863 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL access of tx-... High Unreviewed
CVE-2025-39855 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: erofs: fix runtime warning... High Unreviewed
CVE-2025-39868 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix list... High Unreviewed
CVE-2025-39862 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Prevent recovery... High Unreviewed
CVE-2025-39896 was published Oct 1, 2025
In the Linux kernel, the following vulnerability has been resolved: i40e: remove read access to... High Unreviewed
CVE-2025-39901 was published Oct 1, 2025
In the Linux kernel, the following vulnerability has been resolved: net: phylink: add lock for... High Unreviewed
CVE-2025-39905 was published Oct 1, 2025
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: vhci: Prevent use... High Unreviewed
CVE-2025-39861 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: audit: fix out-of-bounds... High Unreviewed
CVE-2025-39840 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL access of tx-... High Unreviewed
CVE-2025-39854 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: fuse: Block access to folio... High Unreviewed
CVE-2025-39888 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: fix potential... High Unreviewed
CVE-2025-39882 was published Sep 23, 2025
In the Linux kernel, the following vulnerability has been resolved: platform/x86: asus-wmi: Fix... High Unreviewed
CVE-2025-39837 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Disable ASPM on... High Unreviewed
CVE-2023-53446 was published Sep 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database