Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+

10,879 advisories

Loading
A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to... High Unreviewed
CVE-2020-1040 was published May 24, 2022
PlaySMS before 1.4.3 does not sanitize inputs from a malicious string. High Unreviewed
CVE-2020-8644 was published May 24, 2022
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type... Moderate Unreviewed
CVE-2020-0938 was published May 24, 2022
vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter... High Unreviewed
CVE-2019-16759 was published May 24, 2022
Account users in Apache CloudStack by default are allowed to register templates to be downloaded... High Unreviewed
CVE-2024-50386 was published Nov 12, 2024
Dell PowerEdge Server BIOS contains an Improper SMM communication buffer verification... Moderate Unreviewed
CVE-2024-25942 was published Mar 19, 2024
Browsershot Improper Input Validation vulnerability Moderate
CVE-2024-21549 was published for spatie/browsershot (Composer) Dec 20, 2024
Browsershot Local File Inclusion Moderate
CVE-2024-21544 was published for spatie/browsershot (Composer) Dec 13, 2024
In wlan service, there is a possible out of bounds write due to improper input validation. This... High Unreviewed
CVE-2024-20064 was published May 6, 2024
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template... High Unreviewed
CVE-2023-30269 was published Apr 26, 2023
The (1) get_user and (2) put_user API functions in the Linux kernel before 3.5.5 on the v6k and... High Unreviewed
CVE-2013-6282 was published May 17, 2022
A vulnerability, which was classified as critical, has been found in MaxD Lightning Module 4.43... Low Unreviewed
CVE-2025-0974 was published Feb 3, 2025
In several functions of PhoneAccountRegistrar.java, there is a possible way to prevent an access... Moderate Unreviewed
CVE-2023-21111 was published May 16, 2023
A vulnerability exists in the Rockwell Automation FactoryTalk® View SE Datalog function that... High Unreviewed
CVE-2024-4609 was published May 16, 2024
An unauthenticated remote attacker can modify configurations to perform a remote code execution... Critical Unreviewed
CVE-2024-25995 was published Mar 12, 2024
Memory corruption due to improper check to return error when user application requests memory... High Unreviewed
CVE-2020-11261 was published May 24, 2022
A validation issue was addressed with improved input sanitization. This issue is fixed in macOS... Moderate Unreviewed
CVE-2023-28200 was published May 8, 2023
Multiple validation issues were addressed with improved input sanitization. This issue is fixed... Moderate Unreviewed
CVE-2023-27961 was published May 8, 2023
Improper input validation for some Intel(R) PROSet/Wireless WiFi, Intel vPro(R) CSME WiFi and... Moderate Unreviewed
CVE-2022-26047 was published Nov 11, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x... Critical Unreviewed
CVE-2021-22991 was published May 24, 2022
A vulnerability has been found in Aridius XYZ up to 20240927 on OpenCart and classified as... Moderate Unreviewed
CVE-2025-0841 was published Jan 29, 2025
In regclient, pinned manifest digests may be ignored Moderate
CVE-2025-24882 was published for github.com/regclient/regclient (Go) Aug 5, 2024
Improper input validation in github.com/gin-gonic/gin Moderate
CVE-2023-26125 was published for github.com/gin-gonic/gin (Go) May 4, 2023
In SugarCRM before 12.0. Hotfix 91155, a crafted request can inject custom PHP code through the... High Unreviewed
CVE-2023-22952 was published Jan 11, 2023
A memory corruption issue was addressed with improved input validation. This issue is fixed in... High Unreviewed
CVE-2020-27930 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database