Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,891
Erlang
37
GitHub Actions
38
Go
2,550
Maven
5,000+
npm
4,221
NuGet
745
pip
3,998
Pub
12
RubyGems
953
Rust
1,039
Swift
45
Unreviewed advisories
All unreviewed
5,000+

89 advisories

Loading
A vulnerability has been found in Smartstore up to 6.2.0. The affected element is an unknown... Low Unreviewed
CVE-2025-10778 was published Sep 22, 2025
A vulnerability was detected in GrandNode up to 2.3.0. The impacted element is an unknown... Low Unreviewed
CVE-2025-10216 was published Sep 10, 2025
Taylor has race condition in /get-patch that allows purchase token replay Low
GHSA-vh5j-5fhq-9xwg was published for taylored (npm) Jun 27, 2025
snyff
Credited to snyff
In the anode crate 0.1.0 for Rust, data races can occur in unlock in SpinLock. Low Unreviewed
CVE-2025-48753 was published May 24, 2025
process_lock has a Potential Unsound issue in unlock Low
CVE-2025-48751 was published for process_lock (Rust) May 24, 2025
Next.js Race Condition to Cache Poisoning Low
CVE-2025-32421 was published for next (npm) May 15, 2025
cold-try
Credited to cold-try
wgp race condition in inner::drop Low
CVE-2025-47735 was published for wgp (Rust) May 9, 2025
nopCommerce before 4.80.0 does not offer locking for order placement. Thus there is a race... Low Unreviewed
CVE-2024-58248 was published Apr 16, 2025
Kubernetes kube-apiserver Vulnerable to Race Condition Low
CVE-2024-7598 was published for k8s.io/kubernetes/cmd/kube-apiserver (Go) Mar 20, 2025
Shearwater SecurEnvoy SecurAccess Enrol before 9.4.515 is intended to disable accounts that have... Low Unreviewed
CVE-2025-30235 was published Mar 19, 2025
Race in Frames in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a... Low Unreviewed
CVE-2024-6996 was published Aug 6, 2024
Race condition in zenml Low
CVE-2024-2032 was published for zenml (pip) Jun 6, 2024
Mattermost race condition Low
CVE-2024-1949 was published for github.com/mattermost/mattermost/server/v8 (Go) Feb 29, 2024
Race condition in Endorsements Low
CVE-2023-47634 was published for decidim (RubyGems) Feb 20, 2024
microstudi alecslupu
andreslucena
Credited to microstudi, alecslupu, and andreslucena
A race condition was found in the Linux kernel's media/xc4000 device driver in xc4000... Low Unreviewed
CVE-2024-24861 was published Feb 5, 2024
Apache Answer Race Condition vulnerability Low
CVE-2023-49619 was published for github.com/apache/incubator-answer (Go) Jan 10, 2024
Duplicate Advisory: Race Condition leading to logging errors Low
GHSA-v444-jggx-6v7f was published for audited (RubyGems) Jan 4, 2024 withdrawn
The Gotham video-application-server service contained a race condition which would cause it to... Low Unreviewed
CVE-2023-30954 was published Nov 15, 2023
Vulnerability of mutex management in the bone voice ID trusted application (TA) module.... Low Unreviewed
CVE-2023-41306 was published Sep 27, 2023
In startInput of AudioPolicyInterfaceImpl.cpp, there is a possible way of erroneously displaying... Low Unreviewed
CVE-2023-21262 was published Jul 13, 2023
The Forminator WordPress plugin before 1.24.1 does not use an atomic operation to check whether a... Low Unreviewed
CVE-2023-2010 was published Jul 4, 2023
The Gallery app has the risk of hijacking attacks. Successful exploitation of this vulnerability... Low Unreviewed
CVE-2023-31225 was published May 26, 2023
Timing attack in eZ Platform Ibexa Low
CVE-2022-48366 was published for ezsystems/ezplatform-kernel (Composer) Mar 12, 2023
GoBase Race Condition vulnerability Low
CVE-2022-2583 was published for github.com/ntbosscher/gobase (Go) Dec 28, 2022
Auth. (subscriber+) Race Condition vulnerability in WP-Polls plugin <= 2.76.0 on WordPress. Low Unreviewed
CVE-2022-40130 was published Nov 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database