Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,652
Erlang
34
GitHub Actions
26
Go
2,257
Maven
5,000+
npm
3,909
NuGet
704
pip
3,680
Pub
12
RubyGems
915
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

5,030 advisories

Loading
The Post Grid and Gutenberg Blocks – ComboBlocks plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-13798 was published Feb 22, 2025
The Uncode theme for WordPress is vulnerable to arbitrary file read due to insufficient input... Moderate Unreviewed
CVE-2024-13691 was published Feb 18, 2025
In the "bestinformed Web" application, some user input was not properly sanitized. This leads to... Moderate Unreviewed
CVE-2025-0424 was published Feb 18, 2025
In the "bestinformed Web" application, some user input was not properly sanitized. This leads to... Moderate Unreviewed
CVE-2025-0423 was published Feb 18, 2025
Improper Input Validation vulnerability in WatchGuard Fireware OS allows an attacker to... Moderate Unreviewed
CVE-2025-0178 was published Feb 14, 2025
CWE-20: Improper Input Validation vulnerability exists that could cause Denial-of-Service of the... Moderate Unreviewed
CVE-2025-0814 was published Feb 13, 2025
CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of... Moderate Unreviewed
CVE-2024-10083 was published Feb 13, 2025
Improper input validation in some Intel(R) Graphics Drivers may allow an authenticated user to... Moderate Unreviewed
CVE-2024-42410 was published Feb 13, 2025
Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software for... Moderate Unreviewed
CVE-2024-39606 was published Feb 13, 2025
Improper input validation for some Intel(R) QuickAssist Technology software before version 2.2.0... Moderate Unreviewed
CVE-2024-31153 was published Feb 13, 2025
Improper input validation in some Intel(R) SPS firmware before SPS_E5_06.01.04.059.0 may allow a... Moderate Unreviewed
CVE-2024-25571 was published Feb 13, 2025
Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed
CVE-2024-28047 was published Feb 13, 2025
A CWE-20 "Improper Input Validation" in ldbMT.so in Q-Free MaxTime less than or equal to version... Moderate Unreviewed
CVE-2025-26358 was published Feb 12, 2025
A vulnerability was found in dayrui XunRuiCMS up to 4.6.4. It has been declared as critical. This... Moderate Unreviewed
CVE-2025-1186 was published Feb 12, 2025
Improper input validation in AMD Crash Defender could allow an attacker to provide the Windows®... Moderate Unreviewed
CVE-2024-21971 was published Feb 12, 2025
Windows Kerberos Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21350 was published Feb 11, 2025
InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Improper Input... Moderate Unreviewed
CVE-2025-21126 was published Feb 11, 2025
AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input... Moderate Unreviewed
CVE-2024-33659 was published Feb 11, 2025
A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected... Moderate Unreviewed
CVE-2025-1177 was published Feb 11, 2025
A vulnerability was found in taisan tarzan-cms up to 1.0.0. It has been rated as critical. This... Moderate Unreviewed
CVE-2025-1113 was published Feb 8, 2025
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure... Moderate Unreviewed
CVE-2025-20184 was published Feb 5, 2025
A vulnerability in a policy-based Cisco Application Visibility and Control (AVC) implementation... Moderate Unreviewed
CVE-2025-20183 was published Feb 5, 2025
Browsershot Local File Inclusion Moderate
CVE-2025-1026 was published for spatie/browsershot (Composer) Feb 5, 2025
Memory corruption while processing frame packets. Moderate Unreviewed
CVE-2024-38413 was published Feb 3, 2025
The Python standard library functions `urllib.parse.urlsplit` and `urlparse` accepted domain... Moderate Unreviewed
CVE-2025-0938 was published Jan 31, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database