Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,815
Erlang
36
GitHub Actions
32
Go
2,401
Maven
5,000+
npm
4,045
NuGet
723
pip
3,842
Pub
12
RubyGems
933
Rust
1,003
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,978 advisories

Loading
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS... High Unreviewed
CVE-2024-56132 was published Feb 5, 2025
A stack-based buffer overflow vulnerability exists in MPlayer Lite r33064 due to improper bounds... High Unreviewed
CVE-2011-10008 was published Jul 31, 2025
Apache Avro Java SDK vulnerable to Improper Input Validation High
CVE-2023-39410 was published for org.apache.avro:avro (Maven) Sep 29, 2023
sealonohana
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS... High Unreviewed
CVE-2024-8755 was published Oct 11, 2024
A denial-of-service issue was addressed with improved input validation. This issue is fixed in... High Unreviewed
CVE-2025-43223 was published Jul 30, 2025
A request smuggling vulnerability existed in the Google Cloud Classic Application Load Balancer... High Unreviewed
CVE-2025-4600 was published May 16, 2025
Improper Input Validation in the processing of user-supplied splash screen during system boot in... High Unreviewed
CVE-2023-5058 was published Dec 8, 2023
Improper session invalidation in the component /edms/change-password.php of PHPGurukul e-Diary... High Unreviewed
CVE-2025-50492 was published Jul 28, 2025
Improper session invalidation in the component /srms/change-password.php of PHPGurukul Student... High Unreviewed
CVE-2025-50489 was published Jul 28, 2025
Improper session invalidation in the component /doctor/change-password.php of PHPGurukul Car... High Unreviewed
CVE-2025-50494 was published Jul 28, 2025
Improper session invalidation in the component /elms/emp-changepassword.php of PHPGurukul Student... High Unreviewed
CVE-2025-50490 was published Jul 28, 2025
Improper session invalidation in the component /doctor/change-password.php of PHPGurukul Doctor... High Unreviewed
CVE-2025-50493 was published Jul 28, 2025
XWiki Platform vulnerable to SQL injection through XWiki#searchDocuments API High
CVE-2025-54385 was published for org.xwiki.platform:xwiki-platform-oldcore (Maven) Jul 25, 2025
A filename spoofing vulnerability exists in WinRAR when opening specially crafted ZIP archives.... High Unreviewed
CVE-2014-125119 was published Jul 25, 2025
A stack-based buffer overflow vulnerability exists in i-Ftp version 2.20 due to improper handling... High Unreviewed
CVE-2014-125114 was published Jul 25, 2025
An issue was discovered in the DICOM Part 10 File Format in the NEMA DICOM Standard 1995 through... High Unreviewed
CVE-2019-11687 was published May 24, 2022
FastAPI Guard has a regex bypass High
CVE-2025-54365 was published for fastapi-guard (pip) Jul 23, 2025
dhki rennf93
Kyverno's Improper JMESPath Variable Evaluation Lead to Denial of Service High
CVE-2025-47281 was published for github.com/kyverno/kyverno (Go) Jul 22, 2025
thevilledev
A vulnerability in the Software Image Management feature of Cisco DNA Center could allow an... High Unreviewed
CVE-2019-1841 was published May 13, 2022
The WP JobHunt plugin for WordPress is vulnerable to Insecure Direct Object Reference in all... High Unreviewed
CVE-2025-6585 was published Jul 22, 2025
HAX CMS NodeJS Application Has Improper Error Handling That Leads to Denial of Service High
CVE-2025-54134 was published for @haxtheweb/haxcms-nodejs (npm) Jul 21, 2025
asareynolds
Apache Jena doesn't validate file access paths in configuration files uploaded by users with administrator access High
CVE-2025-50151 was published for org.apache.jena:jena (Maven) Jul 21, 2025
A buffer overflow vulnerability exists in Heroes of Might and Magic III Complete 4.0.0.0, HD Mod... High Unreviewed
CVE-2025-34124 was published Jul 17, 2025
A command injection vulnerability exists in LILIN LILIN Digital Video Recorder (DVR) devices... High Unreviewed
CVE-2025-34129 was published Jul 17, 2025
A stack-based buffer overflow vulnerability exists in VideoCharge Studio 2.12.3.685 when... High Unreviewed
CVE-2025-34123 was published Jul 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database