Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,499
Maven
5,000+
npm
4,141
NuGet
735
pip
3,945
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

111,614 advisories

Loading
An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed
CVE-2025-30261 was published Aug 29, 2025
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed
CVE-2025-33038 was published Aug 29, 2025
An improper certificate validation vulnerability has been reported to affect Qsync Central. If a... High Unreviewed
CVE-2025-30277 was published Aug 29, 2025
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system... High Unreviewed
CVE-2025-30273 was published Aug 29, 2025
An improper certificate validation vulnerability has been reported to affect Qsync Central. If a... High Unreviewed
CVE-2025-30278 was published Aug 29, 2025
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed
CVE-2025-33036 was published Aug 29, 2025
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed
CVE-2025-33033 was published Aug 29, 2025
An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed
CVE-2025-29899 was published Aug 29, 2025
A command injection vulnerability has been reported to affect QuRouter 2.5.1. If a remote... High Unreviewed
CVE-2025-29887 was published Aug 29, 2025
An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed
CVE-2025-29894 was published Aug 29, 2025
An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed
CVE-2025-29890 was published Aug 29, 2025
An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed
CVE-2025-29900 was published Aug 29, 2025
An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed
CVE-2025-29893 was published Aug 29, 2025
A command injection vulnerability has been reported to affect several QNAP operating system... High Unreviewed
CVE-2025-30264 was published Aug 29, 2025
Buffer Overflow in the URI parser of CivetWeb 1.14 through 1.16 (latest) allows a remote attacker... High Unreviewed
CVE-2025-55763 was published Aug 29, 2025
A NULL pointer dereference vulnerability has been reported to affect File Station 5. If a remote... High Unreviewed
CVE-2025-29875 was published Aug 29, 2025
Improper Input Validation vulnerability in OpenText Self Service Password Reset allows... High Unreviewed
CVE-2025-5808 was published Aug 29, 2025
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating... High Unreviewed
CVE-2025-22483 was published Aug 29, 2025
Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to... High Unreviewed
CVE-2025-55177 was published Aug 29, 2025
Diebold Nixdorf Vynamic Security Suite through 4.3.0 SR01 does not validate file attributes or... High Unreviewed
CVE-2024-46917 was published Aug 29, 2025
Diebold Nixdorf Vynamic Security Suite through 4.3.0 SR06 contains functionality that allows the... High Unreviewed
CVE-2024-46916 was published Aug 29, 2025
Harness Allows Arbitrary File Write in Gitness LFS server High
CVE-2025-58158 was published for github.com/harness/gitness (Go) Aug 29, 2025
TheKavorka
Versity panic induced by AWS chunked data sent to port High
GHSA-v2ch-c8v8-fgr7 was published for github.com/versity/versitygw (Go) Aug 29, 2025
tonyipm
Rancher affected by unauthenticated Denial of Service High
CVE-2024-58259 was published for github.com/rancher/rancher (Go) Aug 29, 2025
The Booster for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2024-13342 was published Aug 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database