Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

78 advisories

Loading
An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image... Moderate Unreviewed
CVE-2023-49864 was published Jan 10, 2024
A vulnerability classified as problematic was found in ForU CMS up to 2020-06-23. Affected by... Moderate Unreviewed
CVE-2024-0728 was published Jan 19, 2024
CloudLinux CageFS 7.0.8-2 or below insufficiently restricts file paths supplied to the sendmail... Moderate Unreviewed
CVE-2020-36772 was published Jan 22, 2024
Micronaut management endpoints vulnerable to drive-by localhost attack Moderate
CVE-2024-23639 was published for io.micronaut:micronaut-http-server (Maven) Feb 9, 2024
php-svg-lib lacks path validation on font through SVG inline styles Moderate
CVE-2024-25117 was published for phenx/php-svg-lib (Composer) Feb 21, 2024
CometBFT is unstability during blocksync when syncing from malicious peer Moderate
GHSA-hg58-rf2h-6rr7 was published for github.com/cometbft/cometbft (Go) Jun 28, 2024
unknownfeature
Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-38049 was published Jul 9, 2024
Dell Command | Update, Dell Update, and Alienware Update UWP, versions prior to 5.4, contain an... Moderate Unreviewed
CVE-2024-28962 was published Aug 6, 2024
A vulnerability exists in the Rockwell Automation Emulate3D™, which could be leveraged to execute... Moderate Unreviewed
CVE-2024-6079 was published Aug 13, 2024
Nomad Vulnerable to Allocation Directory Escape On Non-Existing File Paths Through Archive Unpacking Moderate
CVE-2024-7625 was published for github.com/hashicorp/nomad (Go) Aug 15, 2024
A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been... Moderate Unreviewed
CVE-2024-7911 was published Aug 18, 2024
In certain highly specific configurations of the host system and MongoDB server binary... Moderate Unreviewed
CVE-2024-8207 was published Aug 27, 2024
A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions <= 20240410. This... Moderate Unreviewed
CVE-2024-5823 was published Oct 29, 2024
A externally controlled reference to a resource in another sphere in Fortinet FortiManager before... Moderate Unreviewed
CVE-2022-23439 was published Jan 22, 2025
A vulnerability, which was classified as problematic, has been found in ywoa up to 2024.07.03.... Moderate Unreviewed
CVE-2025-1225 was published Feb 12, 2025
A vulnerability, which was classified as problematic, has been found in crmeb_java up to 1.3.4.... Moderate Unreviewed
CVE-2025-2365 was published Mar 17, 2025
A vulnerability, which was classified as problematic, was found in zhangyanbo2007 youkefu up to 4... Moderate Unreviewed
CVE-2025-3241 was published Apr 4, 2025
Netskope Client on Mac OS is impacted by a vulnerability in which the postinstall script does not... Moderate Unreviewed
CVE-2024-13177 was published Apr 15, 2025
External control of file name or path in Microsoft Defender for Endpoint allows an authorized... Moderate Unreviewed
CVE-2025-26684 was published May 13, 2025
A vulnerability, which was classified as problematic, has been found in Fengoffice Feng Office 3... Moderate Unreviewed
CVE-2025-5877 was published Jun 9, 2025
A vulnerability was found in Jinher OA 1.0 and classified as problematic. Affected by this issue... Moderate Unreviewed
CVE-2025-7523 was published Jul 13, 2025
A vulnerability was found in Jinher OA 1.2. It has been declared as problematic. This... Moderate Unreviewed
CVE-2025-7823 was published Jul 19, 2025
A vulnerability was found in Jinher OA 1.1. It has been rated as problematic. This issue affects... Moderate Unreviewed
CVE-2025-7824 was published Jul 19, 2025
Sitecore Experience Platform (XP) prior to 8.0 Initial Release (rev. 141212) and Content... Moderate Unreviewed
CVE-2015-10142 was published Jul 25, 2025
In multiple functions of StatusHint.java and TelecomServiceImpl.java, there is a possible way to... Moderate Unreviewed
CVE-2025-0082 was published Aug 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database