Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,471
Erlang
33
GitHub Actions
24
Go
2,174
Maven
5,000+
npm
3,835
NuGet
696
pip
3,511
Pub
12
RubyGems
910
Rust
908
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,139 advisories

Loading
In prepare_to_draw_into_mask of SkBlurMaskFilterImpl.cpp, there is a possible heap overflow due... High Unreviewed
CVE-2024-43767 was published Jan 3, 2025
This vulnerability allows network-adjacent attackers to create arbitrary files on affected... High Unreviewed
CVE-2024-23929 was published Jan 31, 2025
An improper control of generation of code ('Code Injection') vulnerability [CWE-94] in FortiSOAR... High Unreviewed
CVE-2024-21760 was published Mar 18, 2025
In gatts_process_read_req of gatt_sr.cc, there is a possible out of bounds write due to a missing... High Unreviewed
CVE-2024-43771 was published Jan 22, 2025
In gatts_process_find_info of gatt_sr.cc, there is a possible out of bounds write due to a... High Unreviewed
CVE-2024-43770 was published Jan 22, 2025
GeoVision GV-ASWeb with the version 6.1.2.0 or less, contains a Remote Code Execution (RCE)... High Unreviewed
CVE-2025-26264 was published Feb 28, 2025
The Automation Scripting functionality can be exploited by attackers to run arbitrary system... High Unreviewed
CVE-2024-54448 was published Mar 14, 2025
A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be... High Unreviewed
CVE-2024-6655 was published Jul 16, 2024
An issue in Bento4 Bento v.1.6.0-641 allows a remote attacker to execute arbitrary code via the... High Unreviewed
CVE-2024-31005 was published Apr 2, 2024
SeaCms 13.1 is vulnerable to code injection in the notification module of the member message... High Unreviewed
CVE-2024-50808 was published Nov 8, 2024
This High severity RCE (Remote Code Execution) vulnerability CVE-2024-21689  was introduced in... High Unreviewed
CVE-2024-21689 was published Aug 20, 2024
SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is due to the fact that... High Unreviewed
CVE-2024-40521 was published Jul 12, 2024
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2024-23920 was published Jan 31, 2025
A vulnerability was discovered in Linksys Router E2500 with firmware 2.0.00, allows authenticated... High Unreviewed
CVE-2024-40495 was published Jul 24, 2024
On Linux, Node.js ignores certain environment variables if those may have been set by an... High Unreviewed
CVE-2024-21892 was published Feb 20, 2024
The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for... High Unreviewed
CVE-2025-1119 was published Mar 13, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.2, tvOS 16... High Unreviewed
CVE-2023-23496 was published Feb 27, 2023
The The WPCS – WordPress Currency Switcher Professional plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-2169 was published Mar 11, 2025
The Allow PHP Execute plugin for WordPress is vulnerable to PHP Code Injection in all versions up... High Unreviewed
CVE-2024-13890 was published Mar 8, 2025
An improper neutralization of CRLF sequences ('CRLF Injection') vulnerability has been reported... High Unreviewed
CVE-2024-53693 was published Mar 7, 2025
This High severity RCE (Remote Code Execution) vulnerability was introduced in version 8.0.0 of... High Unreviewed
CVE-2023-22513 was published Sep 19, 2023
Microsoft DirectMusic Remote Code Execution Vulnerability High Unreviewed
CVE-2023-36702 was published Oct 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability High Unreviewed
CVE-2023-36592 was published Oct 10, 2023
Microsoft Outlook Remote Code Execution Vulnerability High Unreviewed
CVE-2023-33131 was published Jun 14, 2023
Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021... High Unreviewed
CVE-2021-31198 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database