Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,494
Maven
5,000+
npm
4,129
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

68 advisories

Loading
A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V5.6.0), RUGGEDCOM ROS... High Unreviewed
CVE-2021-42016 was published Mar 9, 2022
user enumeration vulnerability in Daily Expense Manager v1.0. To exploit this vulnerability a... High Unreviewed
CVE-2025-40732 was published Jun 30, 2025
A padding oracle vulnerability exists in Google Chrome’s AppBound cookie encryption mechanism due... High Unreviewed
CVE-2025-34091 was published Jul 2, 2025
In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Invalidate FPU... High Unreviewed
CVE-2021-47226 was published May 21, 2024
On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2),... High Unreviewed
CVE-2017-6168 was published May 13, 2022
The MediaError message property should be consistent to avoid leaking information about cross... High Unreviewed
CVE-2022-34477 was published Dec 22, 2022
A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping... High Unreviewed
CVE-2023-3640 was published Jul 24, 2023
String::Compare::ConstantTime for Perl through 0.321 is vulnerable to timing attacks that allow... High Unreviewed
CVE-2024-13939 was published Mar 28, 2025
The web mail service in Woppoware PostMaster 4.2.2 (build 3.2.5) generates different error... High Unreviewed
CVE-2005-1650 was published May 1, 2022
An access control issue in the component /juis_boxinfo.xml of AVM FRITZ!Box 7530 AX v7.59 allows... High Unreviewed
CVE-2024-54767 was published Jan 7, 2025
Theoretically, it would be possible for an attacker to brute-force the password for an instance... High Unreviewed
CVE-2024-0436 was published Feb 26, 2024
In multiple functions of ConnectivityService.java, there is a possible way for a Wi-Fi AP to... High Unreviewed
CVE-2024-49734 was published Jan 22, 2025
A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS.... High Unreviewed
CVE-2023-0361 was published Feb 15, 2023
An unauthenticated remote attacker can gain access to sensitive information including... High Unreviewed
CVE-2025-1468 was published Mar 18, 2025
Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860... High Unreviewed
CVE-2024-41335 was published Feb 27, 2025
SENAYAN Library Management System (SLiMS) Bulian v9.5.2 does not strip exif data from uploaded... High Unreviewed
CVE-2023-29850 was published Apr 14, 2023
The sensitive information exposure vulnerability in the CGI “Export_Log” and the binary “zcmd” in... High Unreviewed
CVE-2023-28770 was published Jul 6, 2023
Windows MSHTML Platform Security Feature Bypass Vulnerability High Unreviewed
CVE-2024-30040 was published May 14, 2024
IBM Spectrum Virtualize 8.5, under certain circumstances, could disclose sensitive credential... High Unreviewed
CVE-2023-27870 was published May 11, 2023
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... High Unreviewed
CVE-2025-21510 was published Jan 21, 2025
In multiple locations, there is a possible way to obtain any system permission due to a logic... High Unreviewed
CVE-2024-43095 was published Jan 22, 2025
The multimedia video module has a vulnerability in data processing.Successful exploitation of... High Unreviewed
CVE-2023-1696 was published May 20, 2023
Macrovideo v380pro v1.4.97 shares the device id and password when sharing the device. High Unreviewed
CVE-2023-33741 was published May 31, 2023
Windows DNS Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-26221 was published Apr 9, 2024
Certain HP Enterprise LaserJet and HP LaserJet Managed Printers are potentially vulnerable to... High Unreviewed
CVE-2023-1707 was published Jun 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database