Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,135
Maven
5,000+
npm
3,797
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+

103,831 advisories

Loading
An improper access control vulnerability in Power Pages allows an unauthorized attacker to... High Unreviewed
CVE-2025-24989 was published Feb 20, 2025
Authenticated privilege escalation in NetScaler Console and NetScaler Agent allows. High Unreviewed
CVE-2024-12284 was published Feb 20, 2025
An arbitrary file upload vulnerability in the component /userPicture of Timo v2.0.3 allows... High Unreviewed
CVE-2024-57407 was published Feb 10, 2025
Sante PACS Server DCM File Parsing Memory Corruption Denial-of-Service Vulnerability. This... High Unreviewed
CVE-2025-0568 was published Jan 30, 2025
Sante PACS Server URL path Memory Corruption Denial-of-Service Vulnerability. This vulnerability... High Unreviewed
CVE-2025-0574 was published Jan 30, 2025
Heap buffer overflow in V8 in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to... High Unreviewed
CVE-2025-0999 was published Feb 19, 2025
D-Link DIR-853 A1 FW1.20B07 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2025-25743 was published Feb 12, 2025
Use after free in Network in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to... High Unreviewed
CVE-2025-1006 was published Feb 19, 2025
Sante PACS Server DCM File Parsing Memory Corruption Denial-of-Service Vulnerability. This... High Unreviewed
CVE-2025-0569 was published Jan 30, 2025
FP.io VPP (Vector Packet Processor) 22.10, 22.06, 22.02, 21.10, 21.06, 21.01, 20.09, 20.05, 20.01... High Unreviewed
CVE-2022-46397 was published Mar 29, 2023
The facial recognition module has a vulnerability in input parameter verification. Successful... High Unreviewed
CVE-2022-48356 was published Mar 28, 2023
Stimulsoft Designer (Web) 2023.1.3 is vulnerable to Local File Inclusion. High Unreviewed
CVE-2023-25260 was published Mar 28, 2023
The MediaProvider module has a vulnerability in permission verification. Successful exploitation... High Unreviewed
CVE-2022-48347 was published Mar 28, 2023
Stimulsoft GmbH Stimulsoft Designer (Web) 2023.1.3 is vulnerable to Server Side Request Forgery ... High Unreviewed
CVE-2023-25262 was published Mar 28, 2023
The HwContacts module has a logic bypass vulnerability. Successful exploitation of this... High Unreviewed
CVE-2022-48346 was published Mar 28, 2023
A flaw was found in grub2. During the network boot process, when trying to search for the... High Unreviewed
CVE-2025-0624 was published Feb 19, 2025
Heap buffer overflow in GPU in Google Chrome on Android prior to 133.0.6943.126 allowed a remote... High Unreviewed
CVE-2025-1426 was published Feb 19, 2025
A vulnerability in the Netgear DGN2200 router with firmware version v1.0.0.46 and earlier permits... High Unreviewed
CVE-2024-57046 was published Feb 18, 2025
Use of a Broken or Risky Cryptographic Algorithm in Apache WSS4J High
CVE-2015-0226 was published for org.apache.ws.security:wss4j (Maven) May 14, 2022
r3kumar
uniapi version 1.0.7 contained an information harvesting script. High
GHSA-gvvw-rr8m-fj76 was published for uniapi (pip) Jan 27, 2025
An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the public_type... High Unreviewed
CVE-2025-25895 was published Feb 19, 2025
The recovery mode for updates has a vulnerability that causes arbitrary disk modification.... High Unreviewed
CVE-2022-48359 was published Mar 28, 2023
Symantec Diagnostic Tool (SymDiag), prior to 3.0.79, may be susceptible to a Privilege Escalation... High Unreviewed
CVE-2025-0893 was published Feb 19, 2025
IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to... High Unreviewed
CVE-2023-47160 was published Feb 19, 2025
Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged... High Unreviewed
CVE-2024-52541 was published Feb 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database