GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,156

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

137,198 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In the Linux kernel, the following vulnerability has been resolved: atm: Fix NULL pointer... Moderate Unreviewed

CVE-2025-22018 was published Apr 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Janis Elsts Admin Menu Editor.This issue... Moderate Unreviewed

CVE-2024-24876 was published Feb 21, 2024

Cross-Site Request Forgery (CSRF) vulnerability in SoniNow Team Debug.This issue affects Debug:... Moderate Unreviewed

CVE-2024-24798 was published Feb 21, 2024

Cross-Site Request Forgery (CSRF) vulnerability in David Stockl TinyMCE and TinyMCE Advanced... Moderate Unreviewed

CVE-2024-25904 was published Feb 21, 2024

A Null Pointer Dereference vulnerability in WLAvalancheService component of Ivanti Avalanche... Moderate Unreviewed

CVE-2024-24991 was published Apr 19, 2024

The wp-eMember WordPress plugin before 10.6.6 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-5075 was published Jul 13, 2024

Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62... Moderate Unreviewed

CVE-2022-3310 was published Nov 2, 2022

The wp-eMember WordPress plugin before 10.6.7 does not sanitise and escape some of the fields... Moderate Unreviewed

CVE-2024-5079 was published Jul 13, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Mark Stockton Quicksand Post Filter jQuery... Moderate Unreviewed

CVE-2024-24849 was published Feb 21, 2024

Cross-Site Request Forgery (CSRF) vulnerability in John Tendik JTRT Responsive Tables.This issue... Moderate Unreviewed

CVE-2024-24802 was published Feb 21, 2024

Incorrect security UI in full screen in Google Chrome prior to 106.0.5249.62 allowed a remote... Moderate Unreviewed

CVE-2022-3313 was published Nov 2, 2022

Insufficient validation of untrusted input in VPN in Google Chrome on ChromeOS prior to 106.0... Moderate Unreviewed

CVE-2022-3312 was published Nov 2, 2022

In GNU Binutils 2.31.1, there is a use-after-free in the error function in elfcomm.c when called... Moderate Unreviewed

CVE-2018-20623 was published May 13, 2022

Improper certificate validation in Logstash's TCP output could lead to a man-in-the-middle (MitM)... Moderate Unreviewed

CVE-2025-37730 was published May 6, 2025

A vulnerability, which was classified as critical, has been found in itsourcecode Gym Management... Moderate Unreviewed

CVE-2025-4363 was published May 6, 2025

Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper... Moderate Unreviewed

CVE-2025-22476 was published May 6, 2025

The MQTT add-on of PcVue fails to verify that a remote device’s certificate has not already... Moderate Unreviewed

CVE-2025-4384 was published May 6, 2025

The XV Random Quotes WordPress plugin through 1.40 does not have CSRF check in place when... Moderate Unreviewed

CVE-2024-13580 was published Mar 11, 2025

The Email Keep WordPress plugin through 1.1 does not have CSRF check in place when updating its... Moderate Unreviewed

CVE-2024-13826 was published Mar 8, 2025

In the Linux kernel, the following vulnerability has been resolved: idpf: fix adapter NULL... Moderate Unreviewed

CVE-2025-22065 was published Apr 16, 2025

In the Linux kernel, the following vulnerability has been resolved: media: streamzap: fix race... Moderate Unreviewed

CVE-2025-22027 was published Apr 16, 2025

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix management of... Moderate Unreviewed

CVE-2025-22024 was published Apr 16, 2025

The Email Keep WordPress plugin through 1.1 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2024-13825 was published Mar 8, 2025

An XSS issue was discovered in Backdrop CMS 1.28.x before 1.28.5 and 1.29.x before 1.29.3. It... Moderate Unreviewed

CVE-2025-25062 was published Feb 3, 2025

The wp-eMember WordPress plugin before 10.6.6 does not have CSRF check in some places, and is... Moderate Unreviewed

CVE-2024-5077 was published Jul 13, 2024

Previous 1…392…400 Next

Previous 1 2 … 390 391 392 393 394 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

137,198 advisories