Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,894
Erlang
38
GitHub Actions
38
Go
2,552
Maven
5,000+
npm
4,224
NuGet
746
pip
3,999
Pub
12
RubyGems
953
Rust
1,041
Swift
45
Unreviewed advisories
All unreviewed
5,000+

112,524 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22766 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22776 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22778 was published Jan 15, 2025
A “Use of a Broken or Risky Cryptographic Algorithm” vulnerability in the SSL/TLS component used... High Unreviewed
CVE-2024-8603 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22317 was published Jan 15, 2025
Incorrect Privilege Assignment vulnerability in WPExperts User Management allows Privilege... High Unreviewed
CVE-2025-22736 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22750 was published Jan 15, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22751 was published Jan 15, 2025
A denial-of-service vulnerability exists in CyberPower PowerPanel Business (PPB) 4.11.0. An... High Unreviewed
CVE-2024-11322 was published Jan 15, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs: flush delalloc... High Unreviewed
CVE-2024-57896 was published Jan 15, 2025
In the Linux kernel, the following vulnerability has been resolved: ila: serialize calls to... High Unreviewed
CVE-2024-57900 was published Jan 15, 2025
A html code injection vulnerability exists in the vlan management part of Observium CE 24.4.13528... High Unreviewed
CVE-2024-47002 was published Jan 15, 2025
A cross-site scripting (xss) vulnerability exists in the add_alert_check page of Observium CE 24... High Unreviewed
CVE-2024-47140 was published Jan 15, 2025
A cross-site scripting (xss) vulnerability exists in the weather map editor functionality of... High Unreviewed
CVE-2024-45061 was published Jan 15, 2025
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Remove the direct... High Unreviewed
CVE-2024-57795 was published Jan 15, 2025
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Skip restore TC... High Unreviewed
CVE-2024-57801 was published Jan 15, 2025
In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Remove direct link... High Unreviewed
CVE-2024-57857 was published Jan 15, 2025
In the Linux kernel, the following vulnerability has been resolved: drm: adv7511: Fix use-after... High Unreviewed
CVE-2024-57887 was published Jan 15, 2025
In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix slab-use-after... High Unreviewed
CVE-2024-57892 was published Jan 15, 2025
Inappropriate implementation in Navigation in Google Chrome prior to 132.0.6834.83 allowed a... High Unreviewed
CVE-2025-0447 was published Jan 15, 2025
The NitroPack plugin for WordPress is vulnerable to unauthorized modification of data due to a... High Unreviewed
CVE-2024-11848 was published Jan 15, 2025
Out of bounds memory access in V8 in Google Chrome prior to 132.0.6834.83 allowed a remote... High Unreviewed
CVE-2025-0434 was published Jan 15, 2025
Out of bounds read in Metrics in Google Chrome prior to 132.0.6834.83 allowed a remote attacker... High Unreviewed
CVE-2025-0437 was published Jan 15, 2025
Stack buffer overflow in Tracing in Google Chrome prior to 132.0.6834.83 allowed a remote... High Unreviewed
CVE-2025-0438 was published Jan 15, 2025
Insufficient data validation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a... High Unreviewed
CVE-2025-0443 was published Jan 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database