GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,395
Composer 4,383
Erlang 33
GitHub Actions 22
Go 2,141
Maven 5,314
npm 3,803
NuGet 687
pip 3,479
Pub 12
RubyGems 897
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,582

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

245,582 advisories

Filter by severity

Sort by

Least recently updated

In the Linux kernel, the following vulnerability has been resolved: IORING_OP_READ did not... High Unreviewed

CVE-2023-52926 was published Feb 24, 2025

SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the... Moderate Unreviewed

CVE-2024-28989 was published Feb 11, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2024-25928 was published Feb 23, 2024

In multiple functions of MediaSessionRecord.java, there is a possible Intent rebroadcast due to a... High Unreviewed

CVE-2023-20964 was published Mar 24, 2023

In getAvailabilityStatus of EnableContentCapturePreferenceController.java, there is a possible... High Unreviewed

CVE-2023-20975 was published Mar 24, 2023

A highly privileged account can overwrite arbitrary files on the system with log output. The log... Moderate Unreviewed

CVE-2024-28072 was published May 3, 2024

A stack-based buffer overflow in the built-in web server in Moxa NPort W2150A/W2250A Series... High Unreviewed

CVE-2024-1220 was published Mar 6, 2024

In updateInputChannel of WindowManagerService.java, there is a possible way to set a touchable... Moderate Unreviewed

CVE-2023-21026 was published Mar 24, 2023

Insufficient control flow management in AmdCpmGpioInitSmm may allow a privileged attacker to... High Unreviewed

CVE-2023-20559 was published Apr 2, 2023

In serializePasspointConfiguration of PasspointXmlUtils.java, there is a possible logic error in... High Unreviewed

CVE-2023-21027 was published Mar 24, 2023

A use-after-free flaw was found in X.Org and Xwayland. When a device is removed while still... High Unreviewed

CVE-2025-26600 was published Feb 25, 2025

A buffer overflow flaw was found in X.Org and Xwayland. If XkbChangeTypesOfKey() is called with a... High Unreviewed

CVE-2025-26597 was published Feb 25, 2025

An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice()... High Unreviewed

CVE-2025-26598 was published Feb 25, 2025

Improper access control in the auth_oauth module of Odoo Community 15.0 and Odoo Enterprise 15.0... High Unreviewed

CVE-2024-12368 was published Feb 25, 2025

There is an untrusted search path vulnerability in Esri ArcGIS Pro 3.3 and 3.4 that may allow a... High Unreviewed

CVE-2025-1067 was published Feb 25, 2025

A use-after-free flaw was found in X.Org and Xwayland. When changing an alarm, the values of the... High Unreviewed

CVE-2025-26601 was published Feb 25, 2025

An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function... High Unreviewed

CVE-2025-26599 was published Feb 25, 2025

A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText() allocates a... High Unreviewed

CVE-2025-26595 was published Feb 25, 2025

There is an untrusted search path vulnerability in Esri ArcGIS AllSource 1.2 and 1.3 that may... High Unreviewed

CVE-2025-1068 was published Feb 25, 2025

A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in... High Unreviewed

CVE-2025-26596 was published Feb 25, 2025

A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X... High Unreviewed

CVE-2025-26594 was published Feb 25, 2025

The "update" binary in the firmware of the affected product sends attempts to mount to a hard... High Unreviewed

CVE-2025-1204 was published Feb 25, 2025

The Prime Addons for Elementor plugin for WordPress is vulnerable to Insecure Direct Object... Moderate Unreviewed

CVE-2024-13855 was published Feb 20, 2025

In maybeFinish of FallbackHome.java, there is a possible delay of lockdown screen due to logic... High Unreviewed

CVE-2023-21024 was published Mar 24, 2023

In updatePermissionTreeSourcePackage of PermissionManagerServiceImpl.java, there is a possible... High Unreviewed

CVE-2023-20971 was published Mar 24, 2023

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

245,582 advisories