Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,135
Maven
5,000+
npm
3,797
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+

103,831 advisories

Loading
Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows... High Unreviewed
CVE-2025-1492 was published Feb 20, 2025
Authenticated privilege escalation in NetScaler Console and NetScaler Agent allows. High Unreviewed
CVE-2024-12284 was published Feb 20, 2025
The product receives input from an upstream component, but it does not restrict or incorrectly... High Unreviewed
CVE-2024-5706 was published Feb 20, 2025
Buffer Overflow vulnerability in Bento4 v.1.6.0-641 allows a local attacker to execute arbitrary... High Unreviewed
CVE-2025-25944 was published Feb 20, 2025
Buffer Overflow vulnerability in Bento4 v.1.6.0-641 allows a local attacker to execute arbitrary... High Unreviewed
CVE-2025-25943 was published Feb 20, 2025
Missing Authentication for Critical Function in Microsoft Bing allows an unauthorized attacker to... High Unreviewed
CVE-2025-21355 was published Feb 20, 2025
An improper access control vulnerability in Power Pages allows an unauthorized attacker to... High Unreviewed
CVE-2025-24989 was published Feb 20, 2025
The product performs an authorization check when an actor attempts to access a resource or... High Unreviewed
CVE-2024-5705 was published Feb 20, 2025
The web server receives a URL or similar request from an upstream component and retrieves the... High Unreviewed
CVE-2024-37359 was published Feb 20, 2025
A lack of rate limiting in the 'Forgot Password', 'Email Settings' feature of PHPJabbers Event... High Unreviewed
CVE-2023-51293 was published Feb 19, 2025
A lack of rate limiting in the "Login Section, Forgot Email" feature of PHPJabbers Hotel Booking... High Unreviewed
CVE-2023-51301 was published Feb 19, 2025
Buffer Overflow vulnerability in Extreme Networks IQ Engine before 10.6r1a, and through 10.6r4... High Unreviewed
CVE-2023-46272 was published Feb 19, 2025
PHPJabbers Hotel Booking System v4.0 is vulnerable to CSV Injection vulnerability which allows an... High Unreviewed
CVE-2023-51302 was published Feb 19, 2025
A flaw was found in grub2. During the network boot process, when trying to search for the... High Unreviewed
CVE-2025-0624 was published Feb 19, 2025
Various Lexmark devices have CSRF that allows an attacker to modify the configuration of the device. High Unreviewed
CVE-2020-10095 was published Feb 19, 2025
Symantec Diagnostic Tool (SymDiag), prior to 3.0.79, may be susceptible to a Privilege Escalation... High Unreviewed
CVE-2025-0893 was published Feb 19, 2025
IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to... High Unreviewed
CVE-2023-47160 was published Feb 19, 2025
Heap buffer overflow in V8 in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to... High Unreviewed
CVE-2025-0999 was published Feb 19, 2025
Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged... High Unreviewed
CVE-2024-52541 was published Feb 19, 2025
Use after free in Network in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to... High Unreviewed
CVE-2025-1006 was published Feb 19, 2025
Heap buffer overflow in GPU in Google Chrome on Android prior to 133.0.6943.126 allowed a remote... High Unreviewed
CVE-2025-1426 was published Feb 19, 2025
IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to... High Unreviewed
CVE-2024-28777 was published Feb 19, 2025
IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an... High Unreviewed
CVE-2024-45084 was published Feb 19, 2025
IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 client application... High Unreviewed
CVE-2024-52902 was published Feb 19, 2025
The LTL Freight Quotes – SEFL Edition plugin for WordPress is vulnerable to SQL Injection via the... High Unreviewed
CVE-2024-13479 was published Feb 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database