Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

556 advisories

Loading
Deserialization of Untrusted Data vulnerability in uxper Nuss allows Object Injection. This issue... High Unreviewed
CVE-2025-52827 was published Jun 27, 2025
Deserialization of Untrusted Data vulnerability in uxper Sala allows Object Injection. This issue... High Unreviewed
CVE-2025-52826 was published Jun 27, 2025
Deserialization of Untrusted Data vulnerability in impleCode eCommerce Product Catalog allows... High Unreviewed
CVE-2025-49331 was published Jun 17, 2025
A deserialization of untrusted input vulnerability exists in the cvhDecapsulateCmd functionality... High Unreviewed
CVE-2025-24919 was published Jun 14, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed
CVE-2025-47166 was published Jun 10, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed
CVE-2025-47163 was published Jun 10, 2025
Deserialization of Untrusted Data vulnerability in ThemeGoods Photography.This issue affects... High Unreviewed
CVE-2025-47584 was published Jun 6, 2025
Deserialization of Untrusted Data vulnerability in Teastudio.Pl WP Posts Carousel allows Object... High Unreviewed
CVE-2025-39358 was published Jun 6, 2025
Deserialization of Untrusted Data vulnerability in Codexpert, Inc WC Affiliate allows Object... High Unreviewed
CVE-2025-47660 was published May 23, 2025
Deserialization of Untrusted Data vulnerability in designthemes Pet World allows Object Injection... High Unreviewed
CVE-2025-32284 was published May 23, 2025
Deserialization of Untrusted Data vulnerability in designthemes Crafts & Arts allows Object... High Unreviewed
CVE-2025-31924 was published May 23, 2025
Deserialization of Untrusted Data vulnerability in designthemes Finance Consultant allows Object... High Unreviewed
CVE-2025-32293 was published May 23, 2025
The Glossary by WPPedia – Best Glossary plugin for WordPress plugin for WordPress is vulnerable... High Unreviewed
CVE-2025-4803 was published May 21, 2025
An authenticated user can modify application state data. High Unreviewed
CVE-2025-48018 was published May 20, 2025
Deserialization of Untrusted Data vulnerability in ShapedPlugin LLC WP Tabs allows Object... High Unreviewed
CVE-2025-48134 was published May 16, 2025
The Uncanny Automator plugin for WordPress is vulnerable to PHP Object Injection in all versions... High Unreviewed
CVE-2025-3623 was published May 14, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker... High Unreviewed
CVE-2025-30384 was published May 13, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker... High Unreviewed
CVE-2025-30378 was published May 13, 2025
Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker... High Unreviewed
CVE-2025-30382 was published May 13, 2025
Microsoft Dataverse Remote Code Execution Vulnerability High Unreviewed
CVE-2025-47732 was published May 9, 2025
Deserialization of Untrusted Data vulnerability in Florent Maillefaud WP Maintenance allows... High Unreviewed
CVE-2025-47683 was published May 7, 2025
Deserialization of Untrusted Data vulnerability in Mario Peshev WP-CRM System allows Object... High Unreviewed
CVE-2025-47629 was published May 7, 2025
NVIDIA TensorRT-LLM for any platform contains a vulnerability in python executor where an... High Unreviewed
CVE-2025-23254 was published May 1, 2025
GFI MailEssentials prior to version 21.8 is vulnerable to a .NET deserialization issue. A remote... High Unreviewed
CVE-2025-34491 was published Apr 28, 2025
GFI MailEssentials prior to version 21.8 is vulnerable to a local privilege escalation issue. A... High Unreviewed
CVE-2025-34489 was published Apr 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database