GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,936
Composer 4,478
Erlang 33
GitHub Actions 24
Go 2,208
Maven 5,436
npm 3,865
NuGet 696
pip 3,642
Pub 12
RubyGems 913
Rust 919
Swift 38

Unreviewed advisories

All unreviewed 249,966

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

97,728 advisories

Filter by severity

Sort by

Least recently updated

An authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in... High Unreviewed

CVE-2025-21384 was published Apr 1, 2025

Improper authorization in Azure Playwright allows an unauthorized attacker to elevate privileges... High Unreviewed

CVE-2025-26683 was published Apr 1, 2025

An invalid memory access when handling a UE Context Release message containing an invalid UE... High Unreviewed

CVE-2024-24455 was published Nov 15, 2024

An invalid memory access when handling the ProtocolIE_ID field of E-RAB Modify Request messages... High Unreviewed

CVE-2024-24454 was published Nov 15, 2024

An invalid memory access when handling the ProtocolIE_ID field of E-RAB Setup List Context SURes... High Unreviewed

CVE-2024-24457 was published Nov 15, 2024

In the Linux kernel, the following vulnerability has been resolved: keys: Fix UAF in key_put() ... High Unreviewed

CVE-2025-21893 was published Mar 31, 2025

Illustrator versions 29.2.1, 28.7.4 and earlier are affected by a Stack-based Buffer Overflow... High Unreviewed

CVE-2025-27168 was published Mar 11, 2025

An invalid memory access when handling the ENB Configuration Transfer messages containing invalid... High Unreviewed

CVE-2024-24458 was published Nov 15, 2024

An invalid memory access when handling the ProtocolIE_ID field of S1Setup Request messages in... High Unreviewed

CVE-2024-24459 was published Nov 15, 2024

An invalid memory access when handling the ProtocolIE_ID field of E-RAB... High Unreviewed

CVE-2024-24453 was published Nov 15, 2024

An invalid memory access when handling the ProtocolIE_ID field of E-RAB Release Indication... High Unreviewed

CVE-2024-24452 was published Nov 15, 2024

Improper input validation in driver adgnetworkwfpdrv.sys in Adguard For Windows x86 up to version... High Unreviewed

CVE-2022-45770 was published Jan 27, 2023

A use-after-free could result if a JavaScript realm was in the process of being initialized when... High Unreviewed

CVE-2024-3853 was published Apr 16, 2024

An unsafe reflection vulnerability in Kentico Xperience allows an unauthenticated attacker to... High Unreviewed

CVE-2025-2794 was published Mar 31, 2025

A vulnerability exists in the Rockwell Automation Verve Asset Manager due to insufficient... High Unreviewed

CVE-2025-1449 was published Mar 31, 2025

Dentsply Sirona Sidexis <= 4.3 is vulnerable to Incorrect Access Control. High Unreviewed

CVE-2022-44263 was published Jan 27, 2023

The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols... High Unreviewed

CVE-2016-2183 was published May 13, 2022

Cross-Site Request Forgery (CSRF) vulnerability in Aboobacker. AB Google Map Travel allows Cross... High Unreviewed

CVE-2025-31613 was published Mar 31, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Gagan Deep Singh PostmarkApp Email Integrator... High Unreviewed

CVE-2025-31617 was published Mar 31, 2025

Cross-Site Request Forgery (CSRF) vulnerability in AdminGeekZ Varnish WordPress allows Cross Site... High Unreviewed

CVE-2025-31616 was published Mar 31, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-31615 was published Mar 31, 2025

Running DDoS on tcp port 22 will trigger a kernel crash. This issue is introduced by the backport... High Unreviewed

CVE-2023-0881 was published Mar 31, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-31625 was published Mar 31, 2025

Cross-Site Request Forgery (CSRF) vulnerability in richtexteditor Rich Text Editor allows Stored... High Unreviewed

CVE-2025-31623 was published Mar 31, 2025

Coverity versions prior to 2024.9.0 are vulnerable to stored cross-site scripting (XSS) in... High Unreviewed

CVE-2024-12021 was published Mar 31, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

97,728 advisories