Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,144
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

16 advisories

Loading
github.com/google/nftable IP addresses were encoded in the wrong byte order Moderate
CVE-2024-6284 was published for github.com/google/nftables (Go) Jul 4, 2024
Improper validation of syntactic correctness of input in Microsoft Exchange Server allows an... Moderate Unreviewed
CVE-2025-25007 was published Aug 12, 2025
An Improper Validation of Syntactic Correctness of Input vulnerability in Routing Protocol Daemon... Moderate Unreviewed
CVE-2023-44204 was published Oct 13, 2023
A vulnerability in the “Network Interfaces” functionality of the web application of ctrlX OS... Moderate Unreviewed
CVE-2025-24348 was published Apr 30, 2025
A vulnerability in the “Network Interfaces” functionality of the web application of ctrlX OS... Moderate Unreviewed
CVE-2025-24347 was published Apr 30, 2025
A vulnerability in the “Hosts” functionality of the web application of ctrlX OS allows a remote... Moderate Unreviewed
CVE-2025-24345 was published Apr 30, 2025
Westermo WeOS 5 through 5.23.0 allows a reboot via a malformed ESP packet. Moderate Unreviewed
CVE-2025-46419 was published Apr 24, 2025
IBM App Connect Enterprise Certified Container 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11... Moderate Unreviewed
CVE-2024-52362 was published Mar 12, 2025
Eclipse Jetty URI parsing of invalid authority Moderate
CVE-2024-6763 was published for org.eclipse.jetty:jetty-http (Maven) Oct 14, 2024
zer0yu
51l3nc3, member of the AXIS OS Bug Bounty Program, has found that a Guard Tour VAPIX API... Moderate Unreviewed
CVE-2024-6173 was published Sep 10, 2024
51l3nc3, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API... Moderate Unreviewed
CVE-2024-8772 was published Nov 26, 2024
Knud from Fraktal.fi has found a flaw in some Axis Network Door Controllers and Axis Network... Moderate Unreviewed
CVE-2023-21405 was published Jul 25, 2023
A partial DoS vulnerability has been detected in the Reports section, exploitable by a malicious... Moderate Unreviewed
CVE-2023-24015 was published Aug 9, 2023
An authenticated administrator can upload a SAML configuration file with the wrong format, with... Moderate Unreviewed
CVE-2023-23903 was published Aug 9, 2023
Express.js Open Redirect in malformed URLs Moderate
CVE-2024-29041 was published for express (npm) Mar 25, 2024
FDrag0n jonchurch
blakeembrey wesleytodd ruddermann ctcpip UlisesGascon
An Improper Validation of Syntactic Correctness of Input vulnerability in the Juniper DHCP daemon... Moderate Unreviewed
CVE-2022-22176 was published Jan 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database