Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,730
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,587 advisories

Loading
Vulnerability in the Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle... Low Unreviewed
CVE-2024-20955 was published Jan 17, 2024
Vulnerability in Oracle Audit Vault and Database Firewall (component: Firewall). Supported... Low Unreviewed
CVE-2024-20912 was published Jan 17, 2024
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Core)... Low Unreviewed
CVE-2024-20914 was published Jan 17, 2024
Sametime is impacted by sensitive information passed in URL. Low Unreviewed
CVE-2023-45716 was published Feb 10, 2024
Sametime is impacted by a failure to invalidate sessions. The application is setting sensitive... Low Unreviewed
CVE-2023-45718 was published Feb 10, 2024
Vulnerability in Oracle Audit Vault and Database Firewall (component: Firewall). Supported... Low Unreviewed
CVE-2024-20910 was published Jan 17, 2024
A cross-site scripting (XSS) vulnerability in the Web Reports component of HCL BigFix Platform... Low Unreviewed
CVE-2024-23553 was published Feb 2, 2024
HCL DRYiCE MyXalytics is impacted by an Open Redirect vulnerability which could allow an attacker... Low Unreviewed
CVE-2023-50345 was published Jan 3, 2024
The Directorist WordPress plugin before 7.5.4 is vulnerable to Local File Inclusion as it does... Low Unreviewed
CVE-2023-2252 was published Jan 16, 2024
setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size ... Low Unreviewed
CVE-2025-49112 was published Jun 2, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 18.0 before 18.0.1. In... Low Unreviewed
CVE-2025-1110 was published May 22, 2025
The TeleMessage service through 2025-05-05 relies on MD5 for password hashing, which opens up... Low Unreviewed
CVE-2025-48931 was published May 28, 2025
The TeleMessage service through 2025-05-05 stores certain cleartext information in memory, even... Low Unreviewed
CVE-2025-48930 was published May 28, 2025
Vulnerability in Best Practical Solutions, LLC's Request Tracker v5.0.7, where the Triple DES ... Low Unreviewed
CVE-2025-2545 was published May 5, 2025
The SureForms WordPress plugin before 1.4.4 does not sanitise and escape some of its Form... Low Unreviewed
CVE-2025-3513 was published May 2, 2025
The SureForms WordPress plugin before 1.4.4 does not sanitise and escape some of its Form... Low Unreviewed
CVE-2025-3514 was published May 2, 2025
A insertion of sensitive information into log file in Fortinet FortiPortal versions 7.4.0,... Low Unreviewed
CVE-2025-46777 was published May 28, 2025
A buffer over-read in Fortinet FortiOS versions 7.4.0 through 7.4.3, versions 7.2.0 through 7.2.7... Low Unreviewed
CVE-2025-47295 was published May 28, 2025
A missing authorization in Fortinet FortiManager versions 7.2.0 through 7.2.1, and versions 7.0.0... Low Unreviewed
CVE-2024-54020 was published May 28, 2025
A exposure of sensitive system information to an unauthorized control sphere in Fortinet... Low Unreviewed
CVE-2025-24473 was published May 28, 2025
n affected platforms running Arista EOS, ACL policies may not be enforced. IPv4 ingress ACL, MAC... Low Unreviewed
CVE-2025-2826 was published May 28, 2025
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries).... Low Unreviewed
CVE-2020-14797 was published May 24, 2022
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component:... Low Unreviewed
CVE-2020-14779 was published May 24, 2022
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Low Unreviewed
CVE-2021-2341 was published May 24, 2022
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries).... Low Unreviewed
CVE-2020-14798 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database