GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
23 advisories
Filter by severity
Beckhoff Embedded PC images before 2014-10-22 and Automation Device Specification (ADS) TwinCAT...
Critical
Unreviewed
CVE-2014-5415
was published
May 17, 2022
This vulnerability allows remote attackers to bypass authentication on affected installations of...
Critical
Unreviewed
CVE-2022-36983
was published
Mar 29, 2023
?The affected product does not perform an authentication check and performs some dangerous...
Critical
Unreviewed
CVE-2023-40150
was published
Sep 11, 2023
cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to...
Critical
Unreviewed
CVE-2023-3656
was published
Oct 3, 2023
EisBaer Scada - CWE-749: Exposed Dangerous Method or Function
Critical
Unreviewed
CVE-2023-42494
was published
Oct 25, 2023
When user authentication is not enabled the shell can execute commands with the highest...
Critical
Unreviewed
CVE-2023-40151
was published
Nov 21, 2023
In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an...
Critical
Unreviewed
CVE-2023-39226
was published
Dec 1, 2023
An attacker could potentially exploit this vulnerability, leading to the ability to modify files...
Critical
Unreviewed
CVE-2023-5389
was published
Jan 30, 2024
An issue was discovered in MISP before 2.4.184. A client does not need to use POST to start an...
Critical
Unreviewed
CVE-2024-25675
was published
Feb 9, 2024
Voltronic Power ViewPower Pro updateManagerPassword Exposed Dangerous Function Authentication...
Critical
Unreviewed
CVE-2023-51573
was published
Apr 2, 2024
LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-40500
was published
May 3, 2024
LG Simple Editor copyContent Exposed Dangerous Function Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-40501
was published
May 3, 2024
D-Link D-View coreservice_action_script Exposed Dangerous Function Remote Code Execution...
Critical
Unreviewed
CVE-2023-44414
was published
May 3, 2024
Voltronic Power ViewPower LinuxMonitorConsole Exposed Dangerous Method Remote Code Execution...
Critical
Unreviewed
CVE-2023-51582
was published
May 3, 2024
Voltronic Power ViewPower UpsScheduler Exposed Dangerous Method Remote Code Execution...
Critical
Unreviewed
CVE-2023-51583
was published
May 3, 2024
Voltronic Power ViewPower MonitorConsole Exposed Dangerous Method Remote Code Execution...
Critical
Unreviewed
CVE-2023-51575
was published
May 3, 2024
Voltronic Power ViewPower MacMonitorConsole Exposed Dangerous Method Remote Code Execution...
Critical
Unreviewed
CVE-2023-51581
was published
May 3, 2024
Voltronic Power ViewPower updateManagerPassword Exposed Dangerous Method Authentication Bypass...
Critical
Unreviewed
CVE-2023-51574
was published
May 3, 2024
Exposed Dangerous Method or Function vulnerability in Drupal Swift Mailer allows Resource...
Critical
Unreviewed
CVE-2024-13242
was published
Jan 9, 2025
GoldenDict 1.5.0 and 1.5.1 has an exposed dangerous method that allows reading and modifying...
Critical
Unreviewed
CVE-2025-53964
was published
Jul 17, 2025
OpenS100 (the reference implementation S-100 viewer) prior to commit 753cf29 contain a remote...
Critical
Unreviewed
CVE-2026-22208
was published
Feb 17, 2026
Missing Authorization vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows...
Critical
Unreviewed
CVE-2026-30797
was published
Mar 5, 2026
The CrewAI CodeInterpreter tool falls back to SandboxPython when it cannot reach Docker, which...
Critical
Unreviewed
CVE-2026-2275
was published
Mar 30, 2026
ProTip!
Advisories are also available from the
GraphQL API