Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,248
Maven
5,000+
npm
5,000+
NuGet
867
pip
4,513
Pub
12
RubyGems
997
Rust
1,189
Swift
51
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

293,998 advisories

Loading
A vulnerability was detected in itsourcecode Online Doctor Appointment System 1.0. This issue... Moderate Unreviewed
CVE-2026-4473 was published Mar 20, 2026
A security vulnerability has been detected in itsourcecode Online Frozen Foods Ordering System 1... Moderate Unreviewed
CVE-2026-4472 was published Mar 20, 2026
The Aimogen Pro plugin for WordPress is vulnerable to Arbitrary Function Call that can lead to... Critical Unreviewed
CVE-2026-4038 was published Mar 20, 2026
A security flaw has been discovered in itsourcecode Online Frozen Foods Ordering System 1.0.... Moderate Unreviewed
CVE-2026-4470 was published Mar 20, 2026
The Membership Plugin – Restrict Content plugin for WordPress is vulnerable to Unvalidated... Moderate Unreviewed
CVE-2026-4136 was published Mar 20, 2026
A weakness has been identified in itsourcecode Online Frozen Foods Ordering System 1.0. This... Moderate Unreviewed
CVE-2026-4471 was published Mar 20, 2026
A vulnerability was identified in itsourcecode Online Frozen Foods Ordering System 1.0. Affected... Moderate Unreviewed
CVE-2026-4469 was published Mar 20, 2026
A vulnerability was determined in Comfast CF-AC100 2.6.0.8. Affected is an unknown function of... Moderate Unreviewed
CVE-2026-4468 was published Mar 20, 2026
The Frentix GmbH OpenOlat LMS is affected by stored a Cross-Site Scripting (XSS) vulnerability.... Moderate Unreviewed
CVE-2024-25974 was published Feb 20, 2024
A maliciously crafted STP file in ASMKERN228A.dll or ASMDATAX228A.dll when parsed through... High Unreviewed
CVE-2024-23131 was published Feb 22, 2024
A heap buffer overflow flaw was found in the DisableDevice function in the X.Org server. This... High Unreviewed
CVE-2024-21886 was published Feb 28, 2024
A maliciously crafted SLDASM, or SLDPRT files in ODXSW_DLL.dll when parsed through Autodesk... High Unreviewed
CVE-2024-23130 was published Feb 22, 2024
A maliciously crafted MODEL file in libodxdll.dll when parsed through Autodesk AutoCAD could lead... High Unreviewed
CVE-2024-23128 was published Feb 22, 2024
A maliciously crafted MODEL 3DM, STP or SLDASM files in opennurbs.dll when parsed through... High Unreviewed
CVE-2024-23129 was published Feb 22, 2024
IBM CICS TX Advanced 10.1 could disclose sensitive information to a remote attacker due to... Moderate Unreviewed
CVE-2023-38362 was published Mar 4, 2024
Vim before 9.0.2142 has a stack-based buffer overflow because did_set_langmap in map.c calls... High Unreviewed
CVE-2024-22667 was published Feb 5, 2024
A heap-based buffer overflow vulnerability exists in the GGUF library info->ne functionality... High Unreviewed
CVE-2024-21802 was published Feb 26, 2024
A heap-based buffer overflow vulnerability exists in the GGUF library gguf_fread_str... High Unreviewed
CVE-2024-23496 was published Feb 26, 2024
A vulnerability in the VirusEvent feature of ClamAV could allow a local attacker to inject... Moderate Unreviewed
CVE-2024-20328 was published Mar 1, 2024
A heap-based buffer overflow vulnerability exists in the GGUF library header.n_tensors... High Unreviewed
CVE-2024-21836 was published Feb 26, 2024
A heap-based buffer overflow vulnerability exists in the GGUF library GGUF_TYPE_ARRAY... High Unreviewed
CVE-2024-21825 was published Feb 26, 2024
An issue in the HuginBase::PTools::setDestImage function of Hugin v2022.0.0 allows attackers to... High Unreviewed
CVE-2024-25446 was published Feb 9, 2024
An issue in the HuginBase::PanoramaMemento::loadPTScript function of Hugin v2022.0.0 allows... High Unreviewed
CVE-2024-25442 was published Feb 9, 2024
An issue in the HuginBase::ImageVariable<double>::linkWith function of Hugin v2022.0.0 allows... High Unreviewed
CVE-2024-25443 was published Feb 9, 2024
Certain DNSSEC aspects of the DNS protocol (in RFC 4035 and related RFCs) allow remote attackers... High Unreviewed
CVE-2023-50387 was published Feb 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database