GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,198
Composer 4,343
Erlang 31
GitHub Actions 22
Go 2,107
Maven 5,283
npm 3,764
NuGet 679
pip 3,452
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,211

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

113,585 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability was found in ESAFENET CDG V5. It has been classified as critical. Affected is an... Moderate Unreviewed

CVE-2025-0786 was published Jan 29, 2025

A vulnerability was found in ESAFENET CDG V5. It has been declared as problematic. Affected by... Moderate Unreviewed

CVE-2025-0787 was published Jan 29, 2025

A vulnerability has been found in Intelbras InControl up to 2.21.58 and classified as problematic... Moderate Unreviewed

CVE-2025-0784 was published Jan 28, 2025

Local privilege escalation due to insecure folder permissions. The following products are... Moderate Unreviewed

CVE-2025-24826 was published Jan 28, 2025

A vulnerability, which was classified as problematic, was found in pankajindevops scale up to... Moderate Unreviewed

CVE-2025-0783 was published Jan 28, 2025

A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could... Moderate Unreviewed

CVE-2025-23057 was published Jan 28, 2025

CWE-79: Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’)... Moderate Unreviewed

CVE-2024-8401 was published Jan 28, 2025

A privilege escalation vulnerability exists in the web-based management interface of HPE Aruba... Moderate Unreviewed

CVE-2025-23053 was published Jan 28, 2025

A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer... Moderate Unreviewed

CVE-2025-23054 was published Jan 28, 2025

A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could... Moderate Unreviewed

CVE-2025-23055 was published Jan 28, 2025

A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could... Moderate Unreviewed

CVE-2025-23056 was published Jan 28, 2025

In BnAudioPolicyService::onTransact of IAudioPolicyService.cpp, there is a possible information... Moderate Unreviewed

CVE-2018-9378 was published Jan 28, 2025

In HeifDataSource::readAt of HeifDecoderImpl.cpp, there is a possible out of bounds read due to... Moderate Unreviewed

CVE-2017-13318 was published Jan 28, 2025

In HeifDecoderImpl::getScanline of HeifDecoderImpl.cpp, there is a possible out of bounds read... Moderate Unreviewed

CVE-2017-13317 was published Jan 28, 2025

EWON Flexy 202 transmits user credentials in clear text with no encryption when a user is added,... Moderate Unreviewed

CVE-2025-0432 was published Jan 28, 2025

A vulnerability classified as problematic was found in Pimcore 11.4.2. Affected by this... Moderate Unreviewed

CVE-2024-11954 was published Jan 28, 2025

A malformed packet can cause a buffer overflow in the NWK/APS layer of the Ember ZNet stack and... Moderate Unreviewed

CVE-2024-6351 was published Jan 28, 2025

The vulnerability was found in OpenShift Service Mesh 2.6.3 and 2.5.6. This issue occurs due to... Moderate Unreviewed

CVE-2025-0754 was published Jan 28, 2025

A flaw was found in OpenShift Service Mesh 2.6.3 and 2.5.6. Rate-limiter avoidance, access... Moderate Unreviewed

CVE-2025-0752 was published Jan 28, 2025

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to... Moderate Unreviewed

CVE-2025-0290 was published Jan 28, 2025

The ElementsKit Pro plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2025-0321 was published Jan 28, 2025

The Philantro – Donations and Donor Management plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-13527 was published Jan 28, 2025

The MailUp Auto Subscription plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2024-13521 was published Jan 28, 2025

NVIDIA RAPIDS contains a vulnerability in cuDF and cuML, where a user could cause a... Moderate Unreviewed

CVE-2024-0140 was published Jan 28, 2025

NVIDIA GPU display driver for Windows and Linux contains a vulnerability where referencing memory... Moderate Unreviewed

CVE-2024-0147 was published Jan 28, 2025

Previous 1 2 … 6 7 8 9 10 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

113,585 advisories