GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,979
Composer 4,785
Erlang 36
GitHub Actions 29
Go 2,358
Maven 5,673
npm 3,979
NuGet 720
pip 3,777
Pub 12
RubyGems 924
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,764

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,195 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Deserialization of Untrusted Data vulnerability in uxper Nuss allows Object Injection. This issue... High Unreviewed

CVE-2025-52827 was published Jun 27, 2025

Deserialization of Untrusted Data vulnerability in uxper Sala allows Object Injection. This issue... High Unreviewed

CVE-2025-52826 was published Jun 27, 2025

Deserialization of Untrusted Data vulnerability in pep.vn WP Optimize By xTraffic allows Object... Critical Unreviewed

CVE-2025-28970 was published Jun 27, 2025

Deserialization of Untrusted Data vulnerability in wpeverest Everest Forms allows Object... Critical Unreviewed

CVE-2025-52709 was published Jun 27, 2025

Deserialization of Untrusted Data vulnerability in pebas CouponXxL allows Object Injection. This... Critical Unreviewed

CVE-2025-52725 was published Jun 27, 2025

Deserialization of Untrusted Data vulnerability in BoldThemes Amwerk allows Object Injection.... Critical Unreviewed

CVE-2025-52724 was published Jun 27, 2025

IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to execute arbitrary... Critical Unreviewed

CVE-2025-36038 was published Jun 26, 2025

Kaleris NAVIS N4 ULC (Ultra Light Client) contains an unsafe Java deserialization vulnerability.... Critical Unreviewed

CVE-2025-2566 was published Jun 24, 2025

Deserialization of Untrusted Data vulnerability in Apache HertzBeat. This vulnerability can only... High Unreviewed

CVE-2024-41151 was published Nov 18, 2024

A PHP object injection vulnerability exists in SugarCRM versions prior to 6.5.24, 6.7.13, 7.5.2.5... Critical Unreviewed

CVE-2025-25034 was published Jun 20, 2025

Deserialization of Untrusted Data vulnerability in CRM Perks Integration for Contact Form 7 and... Critical Unreviewed

CVE-2025-49330 was published Jun 17, 2025

Deserialization of Untrusted Data vulnerability in impleCode eCommerce Product Catalog allows... High Unreviewed

CVE-2025-49331 was published Jun 17, 2025

Deserialization of Untrusted Data vulnerability in yuliaz Rapyd Payment Extension for WooCommerce... Critical Unreviewed

CVE-2025-30618 was published Jun 17, 2025

Deserialization of Untrusted Data vulnerability in themeton Spare allows Object Injection. This... Critical Unreviewed

CVE-2025-31919 was published Jun 17, 2025

A deserialization of untrusted input vulnerability exists in the cvhDecapsulateCmd functionality... High Unreviewed

CVE-2025-24919 was published Jun 14, 2025

A vulnerability was found in slackero phpwcms up to 1.9.45/1.10.8. It has been declared as... Moderate Unreviewed

CVE-2025-5497 was published Jun 3, 2025

A vulnerability was found in iop-apl-uw basestation3 up to 3.0.4 and classified as problematic.... Moderate Unreviewed

CVE-2025-4905 was published May 19, 2025

The Formidable Forms WordPress plugin before 6.2 unserializes user input, which could allow... High Unreviewed

CVE-2023-1405 was published Jan 16, 2024

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed

CVE-2025-47166 was published Jun 10, 2025

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to... High Unreviewed

CVE-2025-47163 was published Jun 10, 2025

Deserialization of Untrusted Data vulnerability in LoftOcean TinySalt allows Object Injection... Critical Unreviewed

CVE-2025-49455 was published Jun 10, 2025

Deserialization of Untrusted Data vulnerability in LoftOcean CozyStay allows Object Injection... Critical Unreviewed

CVE-2025-49507 was published Jun 10, 2025

Deserialization of Untrusted Data vulnerability in themeton PressGrid - Frontend Publish Reaction... Critical Unreviewed

CVE-2025-31429 was published Jun 9, 2025

Deserialization of Untrusted Data vulnerability in themeton PIMP - Creative MultiPurpose allows... Critical Unreviewed

CVE-2025-31398 was published Jun 9, 2025

Deserialization of Untrusted Data vulnerability in themeton FLAP - Business WordPress Theme... Critical Unreviewed

CVE-2025-31396 was published Jun 9, 2025

Previous 1 2 3 4 5 … 47 48 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,195 advisories