Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,781
Erlang
36
GitHub Actions
29
Go
2,345
Maven
5,000+
npm
3,976
NuGet
719
pip
3,772
Pub
12
RubyGems
923
Rust
980
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,940 advisories

Loading
The com.eypcnnapps.quickreboot (aka Eyuep Can Yilmaz {ROOT] Quick Reboot) application 1.0.8 for... High Unreviewed
CVE-2023-47355 was published Feb 5, 2024
A server-side request forgery (SSRF) vulnerability exists in multiple Selea Targa IP OCR-ANPR... High Unreviewed
CVE-2025-34021 was published Jun 20, 2025
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. Processing... High Unreviewed
CVE-2023-42826 was published Jan 11, 2024
An issue in upf in open5gs 2.7.2 and earlier allows a remote attacker to cause a Denial of... High Unreviewed
CVE-2025-29646 was published Jun 18, 2025
An issue discovered in GPAC 2.3-DEV-rev605-gfc9e29089-master in MP4Box in gf_avc_change_vui ... High Unreviewed
CVE-2023-46929 was published Jan 3, 2024
SnakeYaml Constructor Deserialization Remote Code Execution High
CVE-2022-1471 was published for org.yaml:snakeyaml (Maven) Dec 12, 2022
justintaft securisec
JLLeitschuh DmitriyLewen yairmzr pjfanning
Improper input validation was discovered in UsbCoreDxe in Insyde InsydeH2O kernel 5.4 before 05... High Unreviewed
CVE-2024-55567 was published Jun 12, 2025
Path traversal in Google Web Designer's template handling versions prior to 16.3.0.0407 on... High Unreviewed
CVE-2025-4613 was published Jun 12, 2025
Improper input validation performed during the authentication process of FlashArray could lead to... High Unreviewed
CVE-2025-0051 was published Jun 10, 2025
Improper input validation performed during the authentication process of FlashBlade could lead to... High Unreviewed
CVE-2025-0052 was published Jun 10, 2025
Improper input validation in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate... High Unreviewed
CVE-2025-47968 was published Jun 10, 2025
Yandex Browser Lite for Android prior to version 21.1.0 allows remote attackers to cause a denial... High Unreviewed
CVE-2021-25255 was published May 21, 2025
Improper Input Validation vulnerability in upKeeper Solutions upKeeper Instant Privilege Access... High Unreviewed
CVE-2025-4680 was published Jun 10, 2025
CWE-20: Improper Input Validation vulnerability exists that could cause Denial of Service when an... High Unreviewed
CVE-2025-3116 was published Jun 10, 2025
CWE-20: Improper Input Validation vulnerability exists that could cause Denial of Service when an... High Unreviewed
CVE-2025-3898 was published Jun 10, 2025
nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20... High Unreviewed
CVE-2018-1000168 was published May 13, 2022
CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could... High Unreviewed
CVE-2025-1701 was published Jun 4, 2025
An issue was found in the private API function qDecodeDataUrl() in QtCore, which is used in... High Unreviewed
CVE-2025-5455 was published Jun 2, 2025
Azure RTOS GUIX Studio Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022... High Unreviewed
CVE-2022-35773 was published Aug 10, 2022
An issue in OpenKnowledgeMaps Headstart v7 allows a remote attacker to escalate privileges via... High Unreviewed
CVE-2024-51392 was published May 29, 2025
Denial of service in XStream High
CVE-2017-7957 was published for com.thoughtworks.xstream:xstream (Maven) Jun 30, 2020
An issue in Ocuco Innovation Tracking.exe v.2.10.24.51 allows a local attacker to escalate... High Unreviewed
CVE-2024-40458 was published May 22, 2025
This issue was addressed with improved checks. This issue is fixed in Security Update 2022-005... High Unreviewed
CVE-2022-32797 was published Sep 25, 2022
Ericsson RAN Compute and Site Controller 6610 contains in certain configurations a high severity... High Unreviewed
CVE-2024-25010 was published May 22, 2025
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. There is an SMM memory... High Unreviewed
CVE-2022-36448 was published Sep 29, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database