GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+
5,091 advisories
Filter by severity
vLLM Tool Schema allows DoS via Malformed pattern and type Fields
Moderate
CVE-2025-48944
was published
for
vllm
(pip)
May 28, 2025
A malicious user with administrative privileges in the web portal would be able to manipulate the...
Moderate
Unreviewed
CVE-2025-4635
was published
May 30, 2025
A vulnerability was found in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0...
Moderate
Unreviewed
CVE-2025-5326
was published
May 29, 2025
APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input Validation...
Moderate
Unreviewed
CVE-2025-33043
was published
May 29, 2025
FunAudioLLM InspireMusic deserialization vulnerability
Moderate
CVE-2025-5148
was published
for
inspiremusic
(pip)
May 25, 2025
A vulnerability has been found in easysoft zentaopms 21.5_20250307 and classified as critical....
Moderate
Unreviewed
CVE-2025-5114
was published
May 23, 2025
The Intellian C700 web panel allows you to add firewall rules. Each of these rules has an...
Moderate
Unreviewed
CVE-2025-41379
was published
May 23, 2025
The SSID field is not parsed correctly and can be used to inject commands into the hostpad.conf...
Moderate
Unreviewed
CVE-2025-41378
was published
May 23, 2025
Apache POI OOXML Vulnerable to Improper Input Validation in OOXML File Parsing
Moderate
CVE-2025-31672
was published
for
org.apache.poi:poi-ooxml
(Maven)
Apr 9, 2025
In vow driver, there is a possible memory corruption due to improper input validation. This could...
Moderate
Unreviewed
CVE-2022-20014
was published
Jan 5, 2022
An issue in the handling of environment variables was addressed with improved validation. This...
Moderate
Unreviewed
CVE-2022-32786
was published
Sep 25, 2022
An improper access control vulnerability exists in Rocket.Chat <v5, <v4.8.2 and <v4.7.5 due to...
Moderate
Unreviewed
CVE-2022-32226
was published
Sep 25, 2022
In libMtkOmxGsmDec, there is a possible information disclosure due to an incorrect bounds check....
Moderate
Unreviewed
CVE-2022-20019
was published
Jan 5, 2022
An issue in the handling of environment variables was addressed with improved validation. This...
Moderate
Unreviewed
CVE-2022-26707
was published
Sep 25, 2022
WEBrick Improper Input Validation vulnerability
Moderate
CVE-2009-4492
was published
for
webrick
(RubyGems)
Oct 24, 2017
Harman Becker MGU21 Bluetooth Improper Input Validation Denial-of-Service Vulnerability. This...
Moderate
Unreviewed
CVE-2025-3885
was published
May 22, 2025
Nomad Panics On Job Submission With Bad Artifact Stanza Source URL
Moderate
CVE-2022-41606
was published
for
github.com/hashicorp/nomad
(Go)
Oct 12, 2022
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to...
Moderate
Unreviewed
CVE-2019-0713
was published
May 24, 2022
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to...
Moderate
Unreviewed
CVE-2019-0711
was published
May 24, 2022
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to...
Moderate
Unreviewed
CVE-2019-0710
was published
May 24, 2022
Jenkins DingTalk Plugin Unconditionally Disables SSL/TLS Certificate and Hostname Validation
Moderate
CVE-2025-47888
was published
for
io.jenkins.plugins:dingding-notifications
(Maven)
May 14, 2025
A vulnerability classified as problematic has been found in XU-YIJIE grpo-flat up to...
Moderate
Unreviewed
CVE-2025-4742
was published
May 16, 2025
A vulnerability was found in BeamCtrl Airiana up to 11.0. It has been declared as problematic....
Moderate
Unreviewed
CVE-2025-4740
was published
May 16, 2025
A vulnerability, which was classified as problematic, has been found in elunez eladmin 2.7....
Moderate
Unreviewed
CVE-2025-3250
was published
Apr 4, 2025
A vulnerability, which was classified as problematic, has been found in VITA-MLLM Freeze-Omni up...
Moderate
Unreviewed
CVE-2025-4701
was published
May 15, 2025
ProTip!
Advisories are also available from the
GraphQL API