Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+

5,091 advisories

Loading
The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5,... Moderate Unreviewed
CVE-2025-31215 was published May 13, 2025
The issue was addressed with improved input sanitization. This issue is fixed in watchOS 11.5,... Moderate Unreviewed
CVE-2025-31233 was published May 13, 2025
A vulnerability has been found in y_project RuoYi up to 4.8.0 and classified as critical. This... Moderate Unreviewed
CVE-2025-0734 was published Jan 27, 2025
A lack of length validation in Snippet descriptions in GitLab CE/EE affecting all versions prior... Moderate Unreviewed
CVE-2022-2592 was published Oct 17, 2022
Improper input validation for some Intel(R) Graphics Drivers may allow an authenticated user to... Moderate Unreviewed
CVE-2025-20031 was published May 13, 2025
Improper input validation in the BackupBiosUpdate UEFI firmware SmiVariable driver for the Intel... Moderate Unreviewed
CVE-2025-20034 was published May 13, 2025
Improper input validation in the UEFI firmware GenerationSetup module for the Intel(R) Server... Moderate Unreviewed
CVE-2025-20009 was published May 13, 2025
Improper input validation in Windows Hyper-V allows an unauthorized attacker to deny service... Moderate Unreviewed
CVE-2025-29955 was published May 13, 2025
Improper input validation in Active Directory Certificate Services (AD CS) allows an authorized... Moderate Unreviewed
CVE-2025-29968 was published May 13, 2025
HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net Moderate
CVE-2025-22870 was published for golang.org/x/net (Go) Mar 12, 2025
Improper Input Validation and Injection in Apache Log4j2 Moderate
CVE-2021-44832 was published for org.apache.logging.log4j:log4j-core (Maven) Jan 4, 2022
ppkarwasz
Improper Input Validation vulnerability in Sparx Systems Pro Cloud Server's WebEA model search... Moderate Unreviewed
CVE-2025-4376 was published May 9, 2025
The Email Subscribers by Icegram Express WordPress plugin before 5.7.45 does not sanitise and... Moderate Unreviewed
CVE-2024-11636 was published Jan 13, 2025
Easy!Appointments Denial of Service (DoS) Moderate
CVE-2025-29448 was published for alextselegidis/easyappointments (Composer) May 7, 2025
fast_id_map has a soundness issue and is unmaintained Moderate
GHSA-4h96-mv53-2c86 was published for fast_id_map (Rust) May 8, 2025
In Eclipse Openj9 before version 0.35.0, interface calls can be inlined without a runtime type... Moderate Unreviewed
CVE-2022-3676 was published Oct 24, 2022
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker... Moderate Unreviewed
CVE-2025-20197 was published May 7, 2025
A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7.... Moderate Unreviewed
CVE-2025-2855 was published Mar 27, 2025
Insufficient validation of untrusted input in VPN in Google Chrome on ChromeOS prior to 106.0... Moderate Unreviewed
CVE-2022-3312 was published Nov 2, 2022
An issue SMM memory leak vulnerability in SMM driver (SMRAM was discovered in Insyde InsydeH2O... Moderate Unreviewed
CVE-2022-35896 was published Sep 23, 2022
Improper input validation for some Intel(R) Processors may allow an authenticated user to... Moderate Unreviewed
CVE-2022-21180 was published Jun 16, 2022
Improper input validation for some Intel(R) PROSet/Wireless WiFi in multiple operating systems... Moderate Unreviewed
CVE-2021-33114 was published Feb 11, 2022
Improper Validation of Consistency within input in firmware for some Intel(R) PROSet/Wireless Wi... Moderate Unreviewed
CVE-2021-0173 was published Feb 11, 2022
Improper input validation in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) Wi-Fi in... Moderate Unreviewed
CVE-2021-0178 was published Feb 11, 2022
Improper Validation of Specified Index, Position, or Offset in Input in firmware for some Intel(R... Moderate Unreviewed
CVE-2021-0175 was published Feb 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database