Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,820
Erlang
36
GitHub Actions
32
Go
2,412
Maven
5,000+
npm
4,050
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,004
Swift
38
Unreviewed advisories
All unreviewed
5,000+

39 advisories

Loading
Netavark Has Possible DNS Resolve Confusion Low
CVE-2025-8283 was published for netavark (Rust) Jul 28, 2025
Wing FTP Server before 7.4.4 does not properly validate and sanitize the url parameter of the... Low Unreviewed
CVE-2025-27889 was published Jul 10, 2025
The security module has configuration defects.Successful exploitation of this vulnerability may... High Unreviewed
CVE-2022-41582 was published Oct 14, 2022
Unauthenticated attackers can send configuration settings to device and possible perform physical... Moderate Unreviewed
CVE-2025-30512 was published Apr 16, 2025
ingress-nginx controller - configuration injection via unsanitized auth-url annotation High
CVE-2025-24514 was published for k8s.io/ingress-nginx (Go) Mar 25, 2025
dor-hayun
ngress-nginx controller - configuration injection via unsanitized auth-tls-match-cn annotation High
CVE-2025-1097 was published for k8s.io/ingress-nginx (Go) Mar 25, 2025
dor-hayun
ingress-nginx controller - configuration injection via unsanitized mirror annotations High
CVE-2025-1098 was published for k8s.io/ingress-nginx (Go) Mar 25, 2025
dor-hayun
Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change... High Unreviewed
CVE-2025-0425 was published Feb 18, 2025
Incorrect control of environment variables in PostgreSQL PL/Perl allows an unprivileged database... High Unreviewed
CVE-2024-10979 was published Nov 14, 2024
A configuration setting issue in seccenter.exe as used in Bitdefender Total Security, Bitdefender... High Unreviewed
CVE-2023-6154 was published Apr 1, 2024
A vulnerability was found in Unbound due to incorrect default permissions, allowing any process... High Unreviewed
CVE-2024-1488 was published Feb 15, 2024
For TCAS II systems using transponders compliant with MOPS earlier than RTCA DO-181F, an attacker... High Unreviewed
CVE-2024-11166 was published Jan 22, 2025
An external config control vulnerability exists in the openvpn.cgi openvpn_client_setup()... Critical Unreviewed
CVE-2024-38666 was published Jan 14, 2025
An external config control vulnerability exists in the nas.cgi set_smb_cfg() functionality of... Critical Unreviewed
CVE-2024-39280 was published Jan 14, 2025
An external config control vulnerability exists in the nas.cgi set_nas() functionality of Wavlink... Critical Unreviewed
CVE-2024-39602 was published Jan 14, 2025
Multiple external config control vulnerabilities exist in the nas.cgi set_nas() proftpd... Critical Unreviewed
CVE-2024-39793 was published Jan 14, 2025
Multiple external config control vulnerabilities exists in the openvpn.cgi openvpn_server_setup()... Critical Unreviewed
CVE-2024-39799 was published Jan 14, 2025
Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality... Critical Unreviewed
CVE-2024-39789 was published Jan 14, 2025
Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality... Critical Unreviewed
CVE-2024-39790 was published Jan 14, 2025
Multiple external config control vulnerabilities exist in the nas.cgi set_nas() proftpd... Critical Unreviewed
CVE-2024-39795 was published Jan 14, 2025
Multiple external config control vulnerabilities exists in the openvpn.cgi openvpn_server_setup()... Critical Unreviewed
CVE-2024-39800 was published Jan 14, 2025
Multiple external config control vulnerabilities exist in the nas.cgi set_ftp_cfg() functionality... Critical Unreviewed
CVE-2024-39788 was published Jan 14, 2025
Multiple external config control vulnerabilities exists in the openvpn.cgi openvpn_server_setup()... Critical Unreviewed
CVE-2024-39798 was published Jan 14, 2025
Multiple external config control vulnerabilities exist in the nas.cgi set_nas() proftpd... Critical Unreviewed
CVE-2024-39794 was published Jan 14, 2025
Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability... High Unreviewed
CVE-2024-54097 was published Dec 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database