GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,206
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,109
Maven 5,284
npm 3,765
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 887
Swift 37

Unreviewed advisories

All unreviewed 243,480

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

243,480 advisories

Filter by severity

Sort by

Least recently updated

In Apache Cassandra it is possible for a local attacker without access to the Apache Cassandra... Unknown Unreviewed

CVE-2024-27137 was published Feb 4, 2025

**UNSUPPORTED WHEN ASSIGNED** A post-authentication command injection vulnerability in the CGI... High Unreviewed

CVE-2024-40890 was published Feb 4, 2025

Privilege Defined With Unsafe Actions vulnerability in Apache Cassandra. An user with MODIFY... Unknown Unreviewed

CVE-2025-23015 was published Feb 4, 2025

**UNSUPPORTED WHEN ASSIGNED** Insecure default credentials for the Telnet function in the legacy... Critical Unreviewed

CVE-2025-0890 was published Feb 4, 2025

**UNSUPPORTED WHEN ASSIGNED** A post-authentication command injection vulnerability in the... High Unreviewed

CVE-2024-40891 was published Feb 4, 2025

Incorrect Authorization vulnerability in Apache Cassandra allowing users to access a datacenter... Unknown Unreviewed

CVE-2025-24860 was published Feb 4, 2025

The SKT Blocks – Gutenberg based Page Builder plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-13733 was published Feb 4, 2025

The ShopSite plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed

CVE-2024-13510 was published Feb 4, 2025

The DSGVO All in one for WP plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2024-13356 was published Feb 4, 2025

The SocialV - Social Network and Community BuddyPress Theme theme for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-13529 was published Feb 4, 2025

Improper handling of input variables lead to multiple path traversal vulnerabilities in the... Unknown Unreviewed

CVE-2025-22205 was published Feb 4, 2025

Improper access control in Secure Folder prior to version 1.9.20.50 in Android 14, 1.8.11.0 in... Moderate Unreviewed

CVE-2025-20897 was published Feb 4, 2025

Protection Mechanism Failure in bootloader prior to SMR Jan-2025 Release 1 allows physical... Moderate Unreviewed

CVE-2025-20892 was published Feb 4, 2025

Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to... Moderate Unreviewed

CVE-2025-20891 was published Feb 4, 2025

Use of implicit intent for sensitive communication in EasySetup prior to version 11.1.18 allows... Moderate Unreviewed

CVE-2025-20896 was published Feb 4, 2025

Out-of-bounds write in Blockchain Keystore prior to version 1.3.16.5 allows local privileged... Moderate Unreviewed

CVE-2025-20900 was published Feb 4, 2025

Improper input validation in Samsung Members prior to version 5.2.00.12 allows physical attackers... Moderate Unreviewed

CVE-2025-20898 was published Feb 4, 2025

Out-of-bounds read in decoding malformed bitstream for smp4vtd in libsthmbc.so prior to SMR Jan... Moderate Unreviewed

CVE-2025-20889 was published Feb 4, 2025

Authentication Bypass Using an Alternate Path in Galaxy Store prior to version 4.5.87.6 allows... Low Unreviewed

CVE-2025-20895 was published Feb 4, 2025

Out-of-bounds write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged... Moderate Unreviewed

CVE-2025-20904 was published Feb 4, 2025

Improper control of generation of code in the sourcerer extension for Joomla in versions before... Unknown Unreviewed

CVE-2025-22204 was published Feb 4, 2025

Improper access control in Media Controller prior to version 1.0.24.5282 allows local attacker to... Moderate Unreviewed

CVE-2025-20902 was published Feb 4, 2025

Out-of-bounds read in Blockchain Keystore prior to version 1.3.16.5 allows local privileged... Moderate Unreviewed

CVE-2025-20901 was published Feb 4, 2025

The WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More... Moderate Unreviewed

CVE-2024-13403 was published Feb 4, 2025

Improper access control in Samsung Email prior to version 6.1.97.1 allows physical attackers to... Moderate Unreviewed

CVE-2025-20894 was published Feb 4, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

243,480 advisories