GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,350
Composer 4,652
Erlang 34
GitHub Actions 26
Go 2,257
Maven 5,512
npm 3,909
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,217

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,433 advisories

Filter by severity

Sort by

Least recently updated

A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and... High Unreviewed

CVE-2023-42977 was published Apr 11, 2025

An Improper Input Validation vulnerability in the syslog stream TCP transport of Juniper Networks... High Unreviewed

CVE-2025-30649 was published Apr 9, 2025

An Improper Input Validation vulnerability in the Juniper DHCP Daemon (jdhcpd) of Juniper... High Unreviewed

CVE-2025-30648 was published Apr 9, 2025

CWE-20: Improper Input Validation vulnerability exists that could cause a loss of Confidentiality... High Unreviewed

CVE-2025-2223 was published Apr 9, 2025

Improper input validation in Windows Mobile Broadband allows an authorized attacker to elevate... High Unreviewed

CVE-2025-29811 was published Apr 8, 2025

Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to... High Unreviewed

CVE-2025-27737 was published Apr 8, 2025

Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate... High Unreviewed

CVE-2025-27731 was published Apr 8, 2025

Improper input validation in Azure Local allows an authorized attacker to elevate privileges... High Unreviewed

CVE-2025-27489 was published Apr 8, 2025

Improper input validation in Windows Kerberos allows an unauthorized attacker to elevate... High Unreviewed

CVE-2025-26647 was published Apr 8, 2025

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate... High Unreviewed

CVE-2025-24074 was published Apr 8, 2025

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate... High Unreviewed

CVE-2025-24058 was published Apr 8, 2025

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate... High Unreviewed

CVE-2025-24060 was published Apr 8, 2025

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate... High Unreviewed

CVE-2025-24073 was published Apr 8, 2025

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate... High Unreviewed

CVE-2025-24062 was published Apr 8, 2025

Signalling in Pexip Infinity 29 through 36.2 before 37.0 has improper input validation that... High Unreviewed

CVE-2025-30080 was published Apr 2, 2025

Pexip Infinity before 35.0 has improper input validation that allows remote attackers to trigger... High Unreviewed

CVE-2024-37917 was published Apr 2, 2025

A YAML deserialization vulnerability was found in the Robot Operating System (ROS) 'dynparam', a... High Unreviewed

CVE-2024-39780 was published Apr 2, 2025

Inappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52... High Unreviewed

CVE-2025-3068 was published Apr 2, 2025

A validation issue was addressed with improved logic. This issue is fixed in visionOS 2.4, macOS... High Unreviewed

CVE-2025-30471 was published Apr 1, 2025

A file access issue was addressed with improved input validation. This issue is fixed in macOS... High Unreviewed

CVE-2025-24255 was published Apr 1, 2025

Running DDoS on tcp port 22 will trigger a kernel crash. This issue is introduced by the backport... High Unreviewed

CVE-2023-0881 was published Mar 31, 2025

The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress... High Unreviewed

CVE-2025-1514 was published Mar 26, 2025

A local file inclusion vulnerability exists in haotian-liu/llava at commit c121f04. This... High Unreviewed

CVE-2024-12065 was published Mar 20, 2025

GPT Academic version 3.83 is vulnerable to a Local File Read (LFI) vulnerability through its... High Unreviewed

CVE-2024-10986 was published Mar 20, 2025

In danny-avila/librechat version git 0c2a583, there is an improper input validation vulnerability... High Unreviewed

CVE-2024-11171 was published Mar 20, 2025

Previous 1 2 3 4 5 … 177 178 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,433 advisories