GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,579
Composer 4,699
Erlang 34
GitHub Actions 28
Go 2,292
Maven 5,573
npm 3,941
NuGet 708
pip 3,708
Pub 12
RubyGems 919
Rust 959
Swift 38

Unreviewed advisories

All unreviewed 256,364

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,563 advisories

Filter by severity

Sort by

Least recently updated

A flaw was found in the cookie parsing logic of the libsoup HTTP library, used in GNOME... Low Unreviewed

CVE-2025-4945 was published May 19, 2025

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.3 and iPadOS 18.3... Low Unreviewed

CVE-2025-31185 was published May 19, 2025

a-blog cms multiple versions neutralize logs improperly. If this vulnerability is exploited with... Low Unreviewed

CVE-2025-41429 was published May 19, 2025

In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in ... Low Unreviewed

CVE-2025-23122 was published May 19, 2025

In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in ... Low Unreviewed

CVE-2025-23165 was published May 19, 2025

O2 UK through 2025-05-17 allows subscribers to determine the Cell ID of other subscribers by... Low Unreviewed

CVE-2025-48219 was published May 18, 2025

A vulnerability has been found in itwanger paicoding 1.0.0/1.0.1/1.0.2/1.0.3 and classified as... Low Unreviewed

CVE-2025-4839 was published May 18, 2025

A vulnerability classified as problematic has been found in y_project RuoYi 4.8.0. Affected is an... Low Unreviewed

CVE-2025-4819 was published May 17, 2025

libpspp-core.a in GNU PSPP through 2.0.1 has an incorrect call from fill_buffer (in data... Low Unreviewed

CVE-2025-48188 was published May 16, 2025

CVE-2024-38820 ensured Locale-independent, lowercase conversion for both the configured... Low Unreviewed

CVE-2025-22233 was published May 16, 2025

HTTP host header injection vulnerability in Icewarp Mail Server affecting version 11.4.0. By... Low Unreviewed

CVE-2025-40631 was published May 16, 2025

Cross-site scripting (XSS) in Icewarp Mail Server affecting version 11.4.0. This vulnerability... Low Unreviewed

CVE-2025-40632 was published May 16, 2025

Insecure Direct Object Reference (IDOR) vulnerability in the eSignaViewer component in eSigna... Low Unreviewed

CVE-2025-4762 was published May 15, 2025

Information Exposure vulnerability in Hitachi JP1/IT Desktop Management 2 - Smart Device Manager... Low Unreviewed

CVE-2025-27525 was published May 15, 2025

Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not... Low Unreviewed

CVE-2025-0138 was published May 14, 2025

Protection mechanism failure for some Edge Orchestrator software for Intel(R) Tiber™ Edge... Low Unreviewed

CVE-2025-21081 was published May 13, 2025

Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber™ Edge... Low Unreviewed

CVE-2025-20616 was published May 13, 2025

Exposure of sensitive information to an unauthorized actor for some Edge Orchestrator software... Low Unreviewed

CVE-2025-20030 was published May 13, 2025

Improper access control for some Edge Orchestrator software for Intel(R) Tiber™ Edge Platform may... Low Unreviewed

CVE-2025-20076 was published May 13, 2025

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore... Low Unreviewed

CVE-2024-12533 was published May 13, 2025

An improper isolation or compartmentalization vulnerability [CWE-653] in FortiClientMac version 7... Low Unreviewed

CVE-2024-35281 was published May 13, 2025

A vulnerability has been identified in Mendix OIDC SSO (Mendix 10 compatible) (All versions < V4... Low Unreviewed

CVE-2025-40571 was published May 13, 2025

Cloud Foundry UAA release versions from v77.21.0 to v7.31.0 are vulnerable to a private key... Low Unreviewed

CVE-2025-22246 was published May 13, 2025

The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java... Low Unreviewed

CVE-2025-30012 was published May 13, 2025

A use-after-free issue was addressed with improved memory management. This issue is fixed in... Low Unreviewed

CVE-2025-31239 was published May 13, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

10,563 advisories