GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,605
Composer 4,714
Erlang 34
GitHub Actions 28
Go 2,297
Maven 5,575
npm 3,942
NuGet 708
pip 3,711
Pub 12
RubyGems 920
Rust 959
Swift 38

Unreviewed advisories

All unreviewed 256,644

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

99,710 advisories

Filter by severity

Sort by

Least recently updated

A cross-site scripting (XSS) vulnerability exists in Grafana caused by combining a client path... High Unreviewed

CVE-2025-4123 was published May 22, 2025

Allegra isZipEntryValide Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-3486 was published May 22, 2025

Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability. This... High Unreviewed

CVE-2025-3884 was published May 22, 2025

eCharge Hardy Barth cPH2 index.php Command Injection Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-3883 was published May 22, 2025

eCharge Hardy Barth cPH2 nwcheckexec.php dest Command Injection Remote Code Execution... High Unreviewed

CVE-2025-3882 was published May 22, 2025

GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability.... High Unreviewed

CVE-2025-3887 was published May 22, 2025

GStreamer Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This... High Unreviewed

CVE-2025-2759 was published May 22, 2025

eCharge Hardy Barth cPH2 check_req.php ntp Command Injection Remote Code Execution Vulnerability.... High Unreviewed

CVE-2025-3881 was published May 22, 2025

The Versa Concerto SD-WAN orchestration platform is vulnerable to an privileges escalation and... High Unreviewed

CVE-2025-34025 was published May 22, 2025

An issue in Blizzard Battle.net v2.40.0.15267 allows attackers to escalate privileges via placing... High Unreviewed

CVE-2025-27997 was published May 21, 2025

An issue in Valvesoftware Steam Client Steam Client 1738026274 allows attackers to escalate... High Unreviewed

CVE-2025-27998 was published May 21, 2025

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been declared as critical. This... High Unreviewed

CVE-2025-4883 was published May 18, 2025

Use after free in Layout in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to... High Unreviewed

CVE-2022-3040 was published Sep 27, 2022

Use after free in WebSQL in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to... High Unreviewed

CVE-2022-3039 was published Sep 27, 2022

Heap buffer overflow in Window Manager in Google Chrome on Chrome OS, Lacros prior to 105.0.5195... High Unreviewed

CVE-2022-3052 was published Sep 27, 2022

Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 105.0.5195.52... High Unreviewed

CVE-2022-3043 was published Sep 27, 2022

Use after free in PDF in Google Chrome prior to 105.0.5195.125 allowed a remote attacker to... High Unreviewed

CVE-2022-3196 was published Sep 27, 2022

Use after free in Chrome OS Shell in Google Chrome prior to 104.0.5112.101 allowed a remote... High Unreviewed

CVE-2022-2859 was published Sep 27, 2022

An issue was discovered in Zimbra Collaboration (ZCS) 8.8.x and 9.x (e.g., 8.8.15). The Sudo... High Unreviewed

CVE-2022-41347 was published Sep 27, 2022

The Scripts Organizer WordPress plugin before 3.0 does not have capability and CSRF checks in the... High Unreviewed

CVE-2021-24890 was published Sep 27, 2022

Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.101 allowed a remote attacker... High Unreviewed

CVE-2022-2858 was published Sep 27, 2022

Stored XSS in TIBCO ActiveMatrix Administrator allows malicious data to appear to be part of the... High Unreviewed

CVE-2025-2261 was published May 21, 2025

The component listed above contains a vulnerability that can be exploited by an attacker to... High Unreviewed

CVE-2025-3751 was published May 21, 2025

The Glossary by WPPedia – Best Glossary plugin for WordPress plugin for WordPress is vulnerable... High Unreviewed

CVE-2025-4803 was published May 21, 2025

Argument injection in special agent configuration in Checkmk <2.4.0p1, <2.3.0p32, <2.2.0p42 and 2... High Unreviewed

CVE-2025-1712 was published May 21, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

99,710 advisories