GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,857
Composer 4,472
Erlang 33
GitHub Actions 24
Go 2,195
Maven 5,421
npm 3,841
NuGet 696
pip 3,632
Pub 12
RubyGems 911
Rust 910
Swift 38

Unreviewed advisories

All unreviewed 248,568

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,360 advisories

Filter by severity

Sort by

Least recently updated

Insufficient verification of data authenticity in the configuration state machine may allow a... Low Unreviewed

CVE-2023-20570 was published Feb 13, 2024

The Export and Import Users and Customers plugin for WordPress is vulnerable to arbitrary file... Low Unreviewed

CVE-2025-1972 was published Mar 22, 2025

A vulnerability classified as problematic was found in vim up to 9.1.1096. This vulnerability... Low Unreviewed

CVE-2025-1215 was published Feb 12, 2025

A vulnerability was found in WebAssembly wabt 1.0.36. It has been declared as critical. This... Low Unreviewed

CVE-2025-2584 was published Mar 21, 2025

An issue was discovered in OpenSlides before 4.2.5. When creating new chats via the chat_group... Low Unreviewed

CVE-2025-30345 was published Mar 21, 2025

A directory traversal issue was discovered in OpenSlides before 4.2.5. Files can be uploaded to... Low Unreviewed

CVE-2025-30343 was published Mar 21, 2025

Out-of-bounds array write in Xpdf 4.05 and earlier, due to incorrect integer overflow checking in... Low Unreviewed

CVE-2025-2574 was published Mar 20, 2025

The issue was addressed with improved restriction of data container access. This issue is fixed... Low Unreviewed

CVE-2023-42925 was published Jul 29, 2024

A vulnerability classified as problematic has been found in Audi Universal Traffic Recorder App 2... Low Unreviewed

CVE-2025-2555 was published Mar 20, 2025

The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An... Low Unreviewed

CVE-2024-44139 was published Sep 17, 2024

The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to arbitrary... Low Unreviewed

CVE-2024-13922 was published Mar 20, 2025

LocalAI version v2.19.4 (af0545834fd565ab56af0b9348550ca9c3cb5349) contains a vulnerability where... Low Unreviewed

CVE-2024-9901 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam version 1.5.2, specifically... Low Unreviewed

CVE-2024-10719 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2... Low Unreviewed

CVE-2024-10721 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2... Low Unreviewed

CVE-2024-10723 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. The... Low Unreviewed

CVE-2024-10722 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2,... Low Unreviewed

CVE-2024-10724 was published Mar 20, 2025

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. This... Low Unreviewed

CVE-2024-10725 was published Mar 20, 2025

A reflected cross-site scripting (XSS) vulnerability exists in phpipam/phpipam versions 1.5.0... Low Unreviewed

CVE-2024-10727 was published Mar 20, 2025

The WhatsApp cloud service before late 2024 did not block certain crafted PDF content that can... Low Unreviewed

CVE-2025-30259 was published Mar 20, 2025

In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data... Low Unreviewed

CVE-2025-30258 was published Mar 19, 2025

Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting ... Low Unreviewed

CVE-2025-29431 was published Mar 17, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and... Low Unreviewed

CVE-2023-42957 was published Jul 29, 2024

HCL MyXalytics is affected by concurrent login vulnerability. A concurrent login vulnerability... Low Unreviewed

CVE-2024-42176 was published Mar 19, 2025

Shearwater SecurEnvoy SecurAccess Enrol before 9.4.515 is intended to disable accounts that have... Low Unreviewed

CVE-2025-30235 was published Mar 19, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,360 advisories