GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,208
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,109
Maven 5,284
npm 3,767
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 887
Swift 37

Unreviewed advisories

All unreviewed 243,521

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

95,536 advisories

Filter by severity

Sort by

Least recently updated

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-22794 was published Feb 4, 2025

In the Linux kernel, the following vulnerability has been resolved: pktgen: Avoid out-of-bounds... High Unreviewed

CVE-2025-21680 was published Jan 31, 2025

Tenda AC8v4 V16.03.34.06 has a stack overflow vulnerability. Affected by this vulnerability is... High Unreviewed

CVE-2024-57703 was published Jan 17, 2025

Polycom RealPresence Group 500 <=20 has Insecure Permissions due to automatically loaded cookies.... High Unreviewed

CVE-2025-22918 was published Feb 3, 2025

Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique... High Unreviewed

CVE-2022-24521 was published Apr 16, 2022

A vulnerability in Brocade Fabric OS versions before 9.2.2 could allow man-in-the-middle... High Unreviewed

CVE-2024-7516 was published Nov 12, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-24602 was published Feb 4, 2025

Incorrect Privilege Assignment vulnerability in wpase.com Admin and Site Enhancements (ASE)... High Unreviewed

CVE-2025-24648 was published Feb 4, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-22700 was published Feb 4, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-23645 was published Feb 4, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-24599 was published Feb 4, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-24598 was published Feb 4, 2025

The end-of-life Netgear FVS336Gv2 and FVS336Gv3 are affected by a command injection vulnerability... High Unreviewed

CVE-2024-23690 was published Feb 4, 2025

A Cross-Site Request Forgery (CSRF) in Geovision GV-ASWeb with the version 6.1.1.0 or less allows... High Unreviewed

CVE-2024-56903 was published Feb 3, 2025

**UNSUPPORTED WHEN ASSIGNED** A post-authentication command injection vulnerability in the... High Unreviewed

CVE-2024-40891 was published Feb 4, 2025

**UNSUPPORTED WHEN ASSIGNED** A post-authentication command injection vulnerability in the CGI... High Unreviewed

CVE-2024-40890 was published Feb 4, 2025

A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG-OA6 .... High Unreviewed

CVE-2024-10239 was published Feb 4, 2025

There is a vulnerability in the BMC firmware image authentication design at Supermicro MBD... High Unreviewed

CVE-2024-10237 was published Feb 4, 2025

Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan... High Unreviewed

CVE-2025-20882 was published Feb 4, 2025

A security issue in the firmware image verification implementation at Supermicro MBD-X12DPG... High Unreviewed

CVE-2024-10238 was published Feb 4, 2025

Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to... High Unreviewed

CVE-2025-20881 was published Feb 4, 2025

Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025... High Unreviewed

CVE-2025-20888 was published Feb 4, 2025

Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1... High Unreviewed

CVE-2025-20890 was published Feb 4, 2025

A potential vulnerability has been identified in HP Anyware Agent for Linux which might allow for... High Unreviewed

CVE-2025-1003 was published Feb 4, 2025

A script injection vulnerability was identified in the Tuned package. The `instance_create()` D... High Unreviewed

CVE-2024-52336 was published Nov 26, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

95,536 advisories