GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,825
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,923
npm 4,122
NuGet 735
pip 3,942
Pub 12
RubyGems 945
Rust 1,020
Swift 39

Unreviewed advisories

All unreviewed 269,057

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

752 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An improper input validation vulnerability in the SGI Image Codec of QNX SDP version(s) 6.6, 7.0,... Critical Unreviewed

CVE-2024-35213 was published Jun 11, 2024

An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input... Critical Unreviewed

CVE-2024-45169 was published Aug 22, 2024

xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing... Critical Unreviewed

CVE-2017-12187 was published May 13, 2022

xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing... Critical Unreviewed

CVE-2017-12184 was published May 13, 2022

xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension... Critical Unreviewed

CVE-2017-12185 was published May 13, 2022

xorg-x11-server before 1.19.5 was missing length validation in XFIXES extension allowing... Critical Unreviewed

CVE-2017-12183 was published May 13, 2022

xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing... Critical Unreviewed

CVE-2017-12186 was published May 13, 2022

xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing... Critical Unreviewed

CVE-2017-12180 was published May 13, 2022

xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing... Critical Unreviewed

CVE-2017-12181 was published May 13, 2022

xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing... Critical Unreviewed

CVE-2017-12182 was published May 13, 2022

xorg-x11-server before 1.19.5 had wrong extra length check in ProcXIChangeHierarchy function... Critical Unreviewed

CVE-2017-12178 was published May 13, 2022

xorg-x11-server before 1.19.5 was missing extra length validation in ProcEstablishConnection... Critical Unreviewed

CVE-2017-12176 was published May 13, 2022

Plex Media Server (PMS) versions 1.41.7.x through 1.42.0.x are affected by an unspecified... Critical Unreviewed

CVE-2025-34158 was published Aug 21, 2025

Coolify versions prior to v4.0.0-beta.420.6 are vulnerable to a stored cross-site scripting (XSS)... Critical Unreviewed

CVE-2025-34157 was published Aug 27, 2025

Coolify versions prior to v4.0.0-beta.420.6 are vulnerable to a remote code execution... Critical Unreviewed

CVE-2025-34159 was published Aug 27, 2025

Coolify versions prior to v4.0.0-beta.420.7 are vulnerable to a remote code execution... Critical Unreviewed

CVE-2025-34161 was published Aug 27, 2025

A security issue exists due to improper handling of malformed CIP Forward Close packets during... Critical Unreviewed

CVE-2025-7693 was published Aug 18, 2025

A vulnerability has been found in the MSoft MFlash application that allows execution of... Critical Unreviewed

CVE-2025-9060 was published Aug 15, 2025

Improper Input Validation vulnerability in N-able N-central allows OS Command Injection.This... Critical Unreviewed

CVE-2025-8876 was published Aug 14, 2025

Improper input validation in the Linux kernel-mode driver for some Intel(R) 800 Series Ethernet... Critical Unreviewed

CVE-2025-24325 was published Aug 12, 2025

A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V3.2).... Critical Unreviewed

CVE-2025-40746 was published Aug 12, 2025

An Improper Input Validation in certain UniFi Access devices could allow a Command Injection by a... Critical Unreviewed

CVE-2025-27212 was published Aug 5, 2025

The ICTBroadcast application unsafely passes session cookie data to shell processing, allowing an... Critical Unreviewed

CVE-2025-2611 was published Aug 5, 2025

Cryptographic vulnerability in Iridium Certus 700. This vulnerability allows a user to retrieve... Critical Unreviewed

CVE-2025-41377 was published May 23, 2025

An input validation issue was addressed with improved memory handling. This issue is fixed in... Critical Unreviewed

CVE-2025-31281 was published Jul 30, 2025

Previous1…31 Next

Previous 1 2 3 4 5 … 30 31 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

752 advisories