Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

4,884 advisories

Loading
A vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response... Moderate Unreviewed
CVE-2024-43445 was published Jan 27, 2025
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20708 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20709 was published May 16, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20704 was published May 16, 2023
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20707 was published May 16, 2023
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20710 was published May 16, 2023
In m4u, there is a possible out of bounds write due to improper input validation. This could lead... Moderate Unreviewed
CVE-2023-20722 was published May 16, 2023
In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-20705 was published May 16, 2023
In pqframework, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20719 was published May 16, 2023
In pqframework, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed
CVE-2023-20720 was published May 16, 2023
In isp, there is a possible out of bounds write due to improper input validation. This could lead... Moderate Unreviewed
CVE-2023-20721 was published May 16, 2023
Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loop Moderate
CVE-2024-10846 was published for github.com/compose-spec/compose-go/v2 (Go) Jan 21, 2025
ahollmann idsulik
thaJeztah glours gbrindisi
A low privileged remote attacker... Moderate Unreviewed
CVE-2024-28135 was published May 14, 2024
An unauthenticated remote attacker can read memory out of bounds due to improper input validation... Moderate Unreviewed
CVE-2024-26000 was published Mar 12, 2024
An unauthenticated remote attacker can upload a arbitrary script file due to improper input... Moderate Unreviewed
CVE-2024-25994 was published Mar 12, 2024
An Improper Input Validation vulnerability in Juniper Tunnel Driver (jtd) and ICMP module of... Moderate Unreviewed
CVE-2024-21590 was published Apr 12, 2024
Stored XSS vulnerability in Edit Service Page of Apache Ranger UI in Apache Ranger Version 2.4.0.... Moderate Unreviewed
CVE-2024-45478 was published Jan 22, 2025
Concrete CMS Stored Cross-site Scripting vulnerability Moderate
CVE-2024-4350 was published for concrete5/concrete5 (Composer) Aug 12, 2024
Concrete CMS vulnerable to Stored Cross-site Scripting Moderate
CVE-2024-4353 was published for concrete5/concrete5 (Composer) Aug 1, 2024
File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The... Moderate Unreviewed
CVE-2024-3488 was published May 15, 2024
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3,... Moderate Unreviewed
CVE-2010-0485 was published May 2, 2022
** DISPUTED ** Varnish 2.0.6 writes data to a log file without sanitizing non-printable... Moderate Unreviewed
CVE-2009-4488 was published May 2, 2022
The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1,... Moderate Unreviewed
CVE-2009-2516 was published May 2, 2022
vyper performs incorrect topic logging in raw_log Moderate
CVE-2024-32645 was published for vyper (pip) Apr 25, 2024
chen-robert
vyper performs double eval of the slice start/length args in certain cases Moderate
CVE-2024-32646 was published for vyper (pip) Apr 25, 2024
cyberthirst
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database