GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,750
Composer 4,747
Erlang 35
GitHub Actions 29
Go 2,321
Maven 5,605
npm 3,955
NuGet 712
pip 3,736
Pub 12
RubyGems 921
Rust 972
Swift 38

Unreviewed advisories

All unreviewed 257,911

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

706 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cryptographic vulnerability in Iridium Certus 700. This vulnerability allows a user to retrieve... Critical Unreviewed

CVE-2025-41377 was published May 23, 2025

ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected by an Improper Input... Critical Unreviewed

CVE-2025-43559 was published May 13, 2025

ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected by an Improper Input... Critical Unreviewed

CVE-2025-43560 was published May 13, 2025

Kong Insomnia Desktop Application before 11.0.2 contains a template injection vulnerability that... Critical Unreviewed

CVE-2025-1087 was published May 9, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiments... Critical Unreviewed

CVE-2025-32079 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - HTML Tags allows... Critical Unreviewed

CVE-2025-32073 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikidata... Critical Unreviewed

CVE-2025-32071 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Growth... Critical Unreviewed

CVE-2025-32067 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - AJAX Poll... Critical Unreviewed

CVE-2025-32070 was published Apr 11, 2025

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikibase Media... Critical Unreviewed

CVE-2025-32069 was published Apr 11, 2025

ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Input... Critical Unreviewed

CVE-2025-24446 was published Apr 8, 2025

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.5, macOS... Critical Unreviewed

CVE-2025-30452 was published Apr 1, 2025

Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate... Critical Unreviewed

CVE-2025-29814 was published Mar 21, 2025

A vulnerability in ollama/ollama version 0.1.37 allows for remote code execution (RCE) due to... Critical Unreviewed

CVE-2024-7773 was published Mar 20, 2025

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9),... Critical Unreviewed

CVE-2025-27494 was published Mar 11, 2025

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9),... Critical Unreviewed

CVE-2025-27493 was published Mar 11, 2025

Infoblox NIOS through 8.6.4 and 9.x through 9.0.3 has Improper Input Validation. Critical Unreviewed

CVE-2024-36047 was published Feb 28, 2025

A security vulnerability has been identified in the IBL Software Engineering Visual Weather and... Critical Unreviewed

CVE-2025-1077 was published Feb 7, 2025

SSH Communication Security PrivX versions between 18.0-36.0 implement insufficient validation on... Critical Unreviewed

CVE-2024-47857 was published Jan 31, 2025

CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and... Critical Unreviewed

CVE-2024-11737 was published Dec 11, 2024

Memory corruption while redirecting log file to any file location with any file name. Critical Unreviewed

CVE-2024-33066 was published Oct 7, 2024

Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify... Critical Unreviewed

CVE-2024-8889 was published Sep 18, 2024

Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection.This... Critical Unreviewed

CVE-2024-7591 was published Sep 5, 2024

An issue in Vypor Attack API System v.1.0 allows a remote attacker to execute arbitrary code via... Critical Unreviewed

CVE-2024-44808 was published Sep 4, 2024

A remote code execution (RCE) vulnerability exists in the Pi Camera project, version 1.0,... Critical Unreviewed

CVE-2024-44809 was published Sep 4, 2024

Previous 1 2 3 4 5 … 28 29 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

706 advisories