GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,860

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

36 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to... High Unreviewed

CVE-2025-13659 was published Dec 9, 2025

A vulnerability exists in Google Apigee's JavaCallout policy https://docs.apigee.com/api... High Unreviewed

CVE-2025-13426 was published Dec 6, 2025

A vulnerability has been found in youlaitech youlai-mall 1.0.0/2.0.0. This impacts an unknown... Moderate Unreviewed

CVE-2025-14085 was published Dec 5, 2025

A flaw has been found in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function getById... Moderate Unreviewed

CVE-2025-14051 was published Dec 5, 2025

Improper control of dynamically-managed code resources vulnerability in WebAPI component in... Moderate Unreviewed

CVE-2024-5401 was published Dec 4, 2025

Improper control of dynamically-managed code resources for some Intel(R) NPU Drivers within Ring... Moderate Unreviewed

CVE-2025-26405 was published Nov 11, 2025

An unauthenticated remote attacker can alter the device configuration in a way to get remote code... Critical Unreviewed

CVE-2025-25270 was published Jul 8, 2025

A vulnerability was found in comfyanonymous comfyui 0.3.40. It has been classified as problematic... Low Unreviewed

CVE-2025-6107 was published Jun 16, 2025

NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use,... Moderate Unreviewed

CVE-2025-46673 was published Apr 27, 2025

In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to... Low Unreviewed

CVE-2025-46675 was published Apr 27, 2025

The Lite UI of Apache ShardingSphere ElasticJob-UI allows an attacker to perform RCE by... High Unreviewed

CVE-2022-31764 was published Feb 6, 2025

Langflow versions prior to 1.0.13 suffer from a Privilege Escalation vulnerability, allowing a... High Unreviewed

CVE-2024-7297 was published Jul 30, 2024

Improper Control of Dynamically-Managed Code Resources vulnerability in Logitech Logi Tune on... Moderate Unreviewed

CVE-2024-2537 was published Mar 15, 2024

Cross SiteScripting vulnerability in Citrix Session Recording allows attacker to perform Cross... Moderate Unreviewed

CVE-2023-6184 was published Jan 18, 2024

NVIDIA DGX A100 SBIOS contains a vulnerability where a user may cause a dynamic variable... High Unreviewed

CVE-2023-31032 was published Jan 12, 2024

CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically... Critical Unreviewed

CVE-2023-43177 was published Nov 18, 2023

A vulnerability that poses a potential risk of polluting the MXsecurity sqlite database and the... Moderate Unreviewed

CVE-2023-39983 was published Sep 2, 2023

Attacker might be able to execute malicious Perl code in the Template toolkit, by having the... High Unreviewed

CVE-2022-39051 was published Sep 6, 2022

A vulnerability found in postgresql. On this security issue an attack requires permission to... High Unreviewed

CVE-2022-2625 was published Aug 19, 2022

The Multipass service was found to have code paths that could be abused to cause a denial of... Critical Unreviewed

CVE-2022-27889 was published Jun 15, 2022

There is an Improper Control of Dynamically Managing Code Resources Vulnerability in Huawei... Critical Unreviewed

CVE-2021-22387 was published May 24, 2022

An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a... Critical Unreviewed

CVE-2021-32563 was published May 24, 2022

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an... Critical Unreviewed

CVE-2020-3419 was published May 24, 2022

A vulnerability in the command-line interface in Brocade Fabric OS before Brocade Fabric OS v8.2... Moderate Unreviewed

CVE-2020-15372 was published May 24, 2022

An information disclosure vulnerability exists when the Windows GDI component improperly... Moderate Unreviewed

CVE-2020-1091 was published May 24, 2022

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

36 advisories