Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,476
Erlang
33
GitHub Actions
24
Go
2,207
Maven
5,000+
npm
3,858
NuGet
696
pip
3,639
Pub
12
RubyGems
913
Rust
918
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,967 advisories

Loading
In multiple functions of CompanionDeviceManagerService.java, there is a possible launch... Moderate Unreviewed
CVE-2024-0022 was published May 7, 2024
A vulnerability, which was classified as problematic, has been found in elunez eladmin up to 2.7.... Moderate Unreviewed
CVE-2025-2855 was published Mar 27, 2025
An issue was discovered in appmgr in O-RAN Near-RT RIC I-Release. An attacker could register an... Moderate Unreviewed
CVE-2024-34473 was published May 5, 2024
In Splunk Enterprise versions below 9.4.1, 9.3.3, 9.2.5, and 9.1.8, and Splunk Cloud Platform... Moderate Unreviewed
CVE-2025-20227 was published Mar 27, 2025
In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This... Moderate Unreviewed
CVE-2022-32655 was published Feb 6, 2023
In apusys, there is a possible out of bounds read due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2023-20606 was published Feb 6, 2023
The Advanced iFrame plugin for WordPress is vulnerable to unauthorized excessive creation of... Moderate Unreviewed
CVE-2025-1440 was published Mar 26, 2025
A memory leak flaw and potential divide by zero and Integer overflow was found in the Linux... Moderate Unreviewed
CVE-2023-0615 was published Feb 7, 2023
An issue was discovered in Samsung Mobile Processor, Wearable Processor Exynos Exynos 980, Exynos... Moderate Unreviewed
CVE-2024-27366 was published Sep 9, 2024
An issue was addressed with improved validation of environment variables. This issue is fixed in... Moderate Unreviewed
CVE-2024-27805 was published Jun 10, 2024
Frappe has Possibility of Remote Code Execution due to improper validation Moderate
CVE-2025-30213 was published for frappe (pip) Mar 25, 2025
When GELI reads a key file from standard input, it does not reuse the key file to initialize... Moderate Unreviewed
CVE-2023-0751 was published Feb 8, 2023
ingress-nginx controller - auth secret file path traversal vulnerability Moderate
CVE-2025-24513 was published for k8s.io/ingress-nginx (Go) Mar 25, 2025
dor-hayun
Numbas editor before 7.3 mishandles editing of themes and extensions. Moderate Unreviewed
CVE-2024-27612 was published Mar 8, 2024
yiisoft Yii2 Deserialization of Untrusted Data Moderate
CVE-2025-2689 was published for yiisoft/yii2-dev (Composer) Mar 24, 2025
aizuda snail-job Vulnerable to Deserialization via `nodeExpression` Argument Moderate
CVE-2025-2622 was published for com.aizuda:snail-job (Maven) Mar 22, 2025
API Platform Core does not call GraphQl securityAfterResolver Moderate
CVE-2025-23204 was published for api-platform/core (Composer) Mar 24, 2025
soyuka vinceAmstoutz
ausi
A vulnerability, which was classified as critical, was found in yiisoft Yii2 up to 2.0.39. This... Moderate Unreviewed
CVE-2025-2690 was published Mar 24, 2025
There is a vulnerability in 21.328.01.00.00 version of the E5573Cs-322. Remote attackers could... Moderate Unreviewed
CVE-2018-7935 was published Feb 10, 2023
The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin... Moderate Unreviewed
CVE-2024-13666 was published Mar 22, 2025
A lack of length validation in GitLab CE/EE affecting all versions from 12.4 before 15.6.7, 15.7... Moderate Unreviewed
CVE-2022-3411 was published Feb 14, 2023
A vulnerability in mintplex-labs/anything-llm prior to version 1.2.2 allows for Prisma injection.... Moderate Unreviewed
CVE-2024-8251 was published Mar 20, 2025
A vulnerability in the binary-husky/gpt_academic repository, as of commit git 3890467, allows an... Moderate Unreviewed
CVE-2024-12387 was published Mar 20, 2025
gaizhenbiao/chuanhuchatgpt version git d4ec6a3 is affected by a local file inclusion... Moderate Unreviewed
CVE-2024-10707 was published Mar 20, 2025
HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net Moderate
CVE-2025-22870 was published for golang.org/x/net (Go) Mar 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database