Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,071
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

94,388 advisories

Loading
Software installed and run as a non-privileged user may conduct improper GPU system calls... High Unreviewed
CVE-2024-47897 was published Jan 13, 2025
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix race condition... High Unreviewed
CVE-2023-52480 was published Feb 29, 2024
In the Linux kernel, the following vulnerability has been resolved: mctp: perform route lookups... High Unreviewed
CVE-2023-52483 was published Feb 29, 2024
Kernel software installed and running inside a Guest VM may post improper commands to the GPU... High Unreviewed
CVE-2024-47894 was published Jan 13, 2025
Kernel software installed and running inside a Guest VM may post improper commands to the GPU... High Unreviewed
CVE-2024-47895 was published Jan 13, 2025
In the Linux kernel, the following vulnerability has been resolved: x86/srso: Add SRSO... High Unreviewed
CVE-2023-52482 was published Feb 29, 2024
MonicaHQ v4.1.2 was discovered to contain multiple authenticated Client-Side Injection... High Unreviewed
CVE-2024-54996 was published Jan 10, 2025
Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin. High Unreviewed
CVE-2025-22963 was published Jan 13, 2025
An improper array index validation vulnerability exists in the nowindow functionality of OFFIS... High Unreviewed
CVE-2024-47796 was published Jan 13, 2025
An improper array index validation vulnerability exists in the determineMinMax functionality of... High Unreviewed
CVE-2024-52333 was published Jan 13, 2025
The Appointment Booking Calendar Plugin and Scheduling Plugin WordPress plugin before 1.1.23... High Unreviewed
CVE-2024-12274 was published Jan 13, 2025
Kernel software installed and running inside a Guest VM may post improper commands to the GPU... High Unreviewed
CVE-2024-52938 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22499 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22514 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22567 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-56301 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22506 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22569 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22568 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22570 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22576 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22583 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22588 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22586 was published Jan 13, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-22314 was published Jan 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database