GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,424

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

30 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An unauthenticated remote attacker can alter the device configuration in a way to get remote code... Critical Unreviewed

CVE-2025-25270 was published Jul 8, 2025

A vulnerability was found in comfyanonymous comfyui 0.3.40. It has been classified as problematic... Low Unreviewed

CVE-2025-6107 was published Jun 16, 2025

In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to... Low Unreviewed

CVE-2025-46675 was published Apr 27, 2025

NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use,... Moderate Unreviewed

CVE-2025-46673 was published Apr 27, 2025

The Lite UI of Apache ShardingSphere ElasticJob-UI allows an attacker to perform RCE by... High Unreviewed

CVE-2022-31764 was published Feb 6, 2025

Langflow versions prior to 1.0.13 suffer from a Privilege Escalation vulnerability, allowing a... High Unreviewed

CVE-2024-7297 was published Jul 30, 2024

Improper Control of Dynamically-Managed Code Resources vulnerability in Logitech Logi Tune on... Moderate Unreviewed

CVE-2024-2537 was published Mar 15, 2024

Cross SiteScripting vulnerability in Citrix Session Recording allows attacker to perform Cross... Moderate Unreviewed

CVE-2023-6184 was published Jan 18, 2024

NVIDIA DGX A100 SBIOS contains a vulnerability where a user may cause a dynamic variable... High Unreviewed

CVE-2023-31032 was published Jan 12, 2024

CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically... Critical Unreviewed

CVE-2023-43177 was published Nov 18, 2023

A vulnerability that poses a potential risk of polluting the MXsecurity sqlite database and the... Moderate Unreviewed

CVE-2023-39983 was published Sep 2, 2023

Attacker might be able to execute malicious Perl code in the Template toolkit, by having the... High Unreviewed

CVE-2022-39051 was published Sep 6, 2022

A vulnerability found in postgresql. On this security issue an attack requires permission to... High Unreviewed

CVE-2022-2625 was published Aug 19, 2022

The Multipass service was found to have code paths that could be abused to cause a denial of... Critical Unreviewed

CVE-2022-27889 was published Jun 15, 2022

There is an Improper Control of Dynamically Managing Code Resources Vulnerability in Huawei... Critical Unreviewed

CVE-2021-22387 was published May 24, 2022

An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a... Critical Unreviewed

CVE-2021-32563 was published May 24, 2022

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an... Critical Unreviewed

CVE-2020-3419 was published May 24, 2022

A vulnerability in the command-line interface in Brocade Fabric OS before Brocade Fabric OS v8.2... Moderate Unreviewed

CVE-2020-15372 was published May 24, 2022

An information disclosure vulnerability exists when the Windows GDI component improperly... Moderate Unreviewed

CVE-2020-1091 was published May 24, 2022

An information disclosure vulnerability exists when the Windows GDI component improperly... Moderate Unreviewed

CVE-2020-1097 was published May 24, 2022

There was a man-in-the-middle (MITM) vulnerability present in the Confluence Previews plugin in... Moderate Unreviewed

CVE-2019-15006 was published May 24, 2022

GitHub Enterprise before 20120304 does not properly restrict the use of a hash to provide values... Moderate Unreviewed

CVE-2012-2055 was published May 17, 2022

distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows... Critical Unreviewed

CVE-2014-9852 was published May 14, 2022

A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS... Moderate Unreviewed

CVE-2019-1595 was published May 13, 2022

A vulnerability in the Fibre Channel over Ethernet (FCoE) N-port Virtualization (NPV) protocol... High Unreviewed

CVE-2019-1617 was published May 13, 2022

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

30 advisories