GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,702
Composer 4,471
Erlang 33
GitHub Actions 24
Go 2,175
Maven 5,404
npm 3,835
NuGet 696
pip 3,511
Pub 12
RubyGems 910
Rust 908
Swift 38

Unreviewed advisories

All unreviewed 248,587

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,355 advisories

Filter by severity

Sort by

Least recently updated

The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An... Low Unreviewed

CVE-2024-44139 was published Sep 17, 2024

The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to arbitrary... Low Unreviewed

CVE-2024-13922 was published Mar 20, 2025

In mlflow/mlflow version 2.18, an admin is able to create a new user account without setting a... Low Unreviewed

CVE-2025-1474 was published Mar 20, 2025

LocalAI version v2.19.4 (af0545834fd565ab56af0b9348550ca9c3cb5349) contains a vulnerability where... Low Unreviewed

CVE-2024-9901 was published Mar 20, 2025

A reflected cross-site scripting (XSS) vulnerability exists in phpipam/phpipam versions 1.5.0... Low Unreviewed

CVE-2024-10727 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. The... Low Unreviewed

CVE-2024-10722 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2... Low Unreviewed

CVE-2024-10721 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2... Low Unreviewed

CVE-2024-10723 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2,... Low Unreviewed

CVE-2024-10724 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. This... Low Unreviewed

CVE-2024-10725 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam version 1.5.2, specifically... Low Unreviewed

CVE-2024-10719 was published Mar 20, 2025

The WhatsApp cloud service before late 2024 did not block certain crafted PDF content that can... Low Unreviewed

CVE-2025-30259 was published Mar 20, 2025

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data... Low Unreviewed

CVE-2025-30258 was published Mar 19, 2025

Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting ... Low Unreviewed

CVE-2025-29431 was published Mar 17, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and... Low Unreviewed

CVE-2023-42957 was published Jul 29, 2024

HCL MyXalytics is affected by concurrent login vulnerability. A concurrent login vulnerability... Low Unreviewed

CVE-2024-42176 was published Mar 19, 2025

Shearwater SecurEnvoy SecurAccess Enrol before 9.4.515 is intended to disable accounts that have... Low Unreviewed

CVE-2025-30235 was published Mar 19, 2025

A vulnerability has been identified in the port ACL functionality of AOS-CX software running on... Low Unreviewed

CVE-2025-25040 was published Mar 18, 2025

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). ... Low Unreviewed

CVE-2024-21164 was published Jul 17, 2024

In the Linux kernel, the following vulnerability has been resolved: fs/aio: Restrict... Low Unreviewed

CVE-2024-26764 was published Apr 3, 2024

Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB.... Low Unreviewed

CVE-2023-34401 was published Feb 14, 2025

In affected versions of Octopus Deploy it was possible to upload files to unexpected locations on... Low Unreviewed

CVE-2025-0526 was published Feb 11, 2025

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security:... Low Unreviewed

CVE-2025-21546 was published Jan 21, 2025

The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of... Low Unreviewed

CVE-2025-1622 was published Mar 16, 2025

An issue was discovered on Mercedes Benz NTG 6. A possible integer overflow exists in the user... Low Unreviewed

CVE-2023-34406 was published Feb 14, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,355 advisories