GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,144
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,760
NuGet 678
pip 3,446
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,557

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

622 advisories

Filter by severity

Sort by

Least recently updated

Pre-authentication deserialization of untrusted data vulnerability has been identified in the... Critical Unreviewed

CVE-2025-23006 was published Jan 23, 2025

Deserialization of Untrusted Data vulnerability in NotFound Muzaara Google Ads Report allows... Critical Unreviewed

CVE-2025-23914 was published Jan 22, 2025

Deserialization of Untrusted Data vulnerability in NotFound Quick Count allows Object Injection.... Critical Unreviewed

CVE-2025-23932 was published Jan 22, 2025

Deserialization of Untrusted Data vulnerability in NotFound ARPrice allows Object Injection. This... Critical Unreviewed

CVE-2024-49688 was published Jan 21, 2025

Rasa Allows Remote Code Execution via Remote Model Loading Critical

CVE-2024-49375 was published for rasa (pip) Jan 14, 2025

Deserialization of Untrusted Data vulnerability in GiveWP GiveWP allows Object Injection.This... Critical Unreviewed

CVE-2025-22777 was published Jan 13, 2025

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP... Critical Unreviewed

CVE-2024-12877 was published Jan 11, 2025

Apache OpenMeetings vulnerable to Deserialization of Untrusted Data Critical

CVE-2024-54676 was published for org.apache.openmeetings:openmeetings-parent (Maven) Jan 8, 2025

A vulnerability in Crater Invoice allows an unauthenticated attacker with knowledge of the... Critical Unreviewed

CVE-2024-55556 was published Jan 7, 2025

Deserialization of Untrusted Data vulnerability in Amento Tech Pvt ltd WPGuppy allows Object... Critical Unreviewed

CVE-2024-49222 was published Jan 7, 2025

Deserialization of Untrusted Data vulnerability in Gueststream VRPConnector allows Object... Critical Unreviewed

CVE-2024-56058 was published Dec 18, 2024

Deserialization of Untrusted Data vulnerability in ForumWP ForumWP allows Object Injection.This... Critical Unreviewed

CVE-2024-54367 was published Dec 16, 2024

Deserialization of Untrusted Data vulnerability in PickPlugins Mail Picker allows Object... Critical Unreviewed

CVE-2024-54273 was published Dec 13, 2024

Deserialization of untrusted data in Microsoft Update Catalog allows an unauthorized attacker to... Critical Unreviewed

CVE-2024-49147 was published Dec 12, 2024

Insecure deserialization in Hodoku v2.3.0 to v2.3.2 allows attackers to execute arbitrary code. Critical Unreviewed

CVE-2024-51363 was published Dec 4, 2024

JFinal CMS 5.1.0 is vulnerable to Command Execution via unauthorized execution of deserialization... Critical Unreviewed

CVE-2024-53477 was published Dec 2, 2024

Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R package... Critical Unreviewed

CVE-2024-52338 was published Nov 28, 2024

Valor Apps Easy Folder Listing Pro has a deserialization vulnerability that allows an... Critical Unreviewed

CVE-2024-11145 was published Nov 26, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24336. It... Critical Unreviewed

CVE-2024-53910 was published Nov 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. It... Critical Unreviewed

CVE-2024-53912 was published Nov 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24344. It... Critical Unreviewed

CVE-2024-53914 was published Nov 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24334. It... Critical Unreviewed

CVE-2024-53909 was published Nov 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24343. It... Critical Unreviewed

CVE-2024-53913 was published Nov 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24405. It... Critical Unreviewed

CVE-2024-53915 was published Nov 24, 2024

An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24339. It... Critical Unreviewed

CVE-2024-53911 was published Nov 24, 2024

Previous 1 2 3 4 5 … 24 25 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

622 advisories