Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

5 advisories

Loading
Password can be used past expiry in PgBouncer due to auth_query not taking into account Postgres... High Unreviewed
CVE-2025-2291 was published Apr 16, 2025
An authentication bypass vulnerability exists in the get_IFTTTTtoken.cgi functionality of Asus RT... High Unreviewed
CVE-2022-35401 was published Jan 10, 2023
python-keystoneclient missing expiration check in PKI token validation High
CVE-2013-2104 was published for python-keystoneclient (pip) May 17, 2022
OpenStack Keystone Insufficient token expiration High
CVE-2012-5563 was published for keystone (pip) May 17, 2022
Philips Vue PACS versions 12.2.x.x and prior uses a cryptographic key or password past its... High Unreviewed
CVE-2021-33020 was published Apr 3, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database