Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

9,794 advisories

Loading
Memory corruption while redirecting log file to any file location with any file name. Critical Unreviewed
CVE-2024-21473 was published Apr 1, 2024
An issue in alanclarke URLite v.3.1.0 allows an attacker to cause a denial of service (DoS) via a... High Unreviewed
CVE-2023-51931 was published Feb 16, 2024
HCL MyXalytics is affected by a weak input validation vulnerability. The application accepts... Low Unreviewed
CVE-2024-42175 was published Jan 11, 2025
A vulnerability was found in wangl1989 mysiteforme 1.0 and classified as critical. Affected by... Moderate Unreviewed
CVE-2024-13136 was published Jan 5, 2025
Memory corruption in Core Services while executing the command for removing a single event listener. Critical Unreviewed
CVE-2023-28578 was published Mar 4, 2024
The command ctl_persistent_reserve_out allows the caller to specify an arbitrary size which will... Moderate Unreviewed
CVE-2024-39281 was published Nov 12, 2024
An issue was discovered in Joomla! 4.2.0 through 4.3.1. Lack of input validation caused an open... Moderate Unreviewed
CVE-2023-23754 was published May 30, 2023
Buffer overwrite in the WLAN host driver by leveraging a compromised WLAN FW High Unreviewed
CVE-2017-15832 was published Nov 26, 2024
A log spoofing flaw was found in the Tuned package due to improper sanitization of some API... Moderate Unreviewed
CVE-2024-52337 was published Nov 26, 2024
Startup control vulnerability in the ability module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-54121 was published Jan 8, 2025
Vulnerability of input parameters not being verified in the widget framework module Impact:... Moderate Unreviewed
CVE-2024-56437 was published Jan 8, 2025
Improper Input Validation vulnerability in Management Program in TXOne Networks Portable... Moderate Unreviewed
CVE-2024-47934 was published Jan 8, 2025
sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script ... High Unreviewed
CVE-2012-1823 was published May 14, 2022
An improper input insertion vulnerability in AiCloud on certain router models may lead to... High Unreviewed
CVE-2024-12912 was published Jan 2, 2025
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-28302 was published Apr 11, 2023
Microsoft Message Queuing Denial of Service Vulnerability High Unreviewed
CVE-2023-36912 was published Aug 8, 2023
Microsoft Message Queuing Denial of Service Vulnerability Moderate Unreviewed
CVE-2023-38254 was published Aug 8, 2023
Microsoft Message Queuing Denial of Service Vulnerability Moderate Unreviewed
CVE-2023-35376 was published Aug 8, 2023
Microsoft Message Queuing Denial of Service Vulnerability Moderate Unreviewed
CVE-2023-35377 was published Aug 8, 2023
Some Huawei wearables have a vulnerability of not verifying the actual data size when reading... High Unreviewed
CVE-2021-22484 was published Dec 28, 2024
A vulnerability was found in running-elephant Datart 1.0.0-rc3. It has been rated as critical.... Moderate Unreviewed
CVE-2024-12994 was published Dec 28, 2024
The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent... Critical Unreviewed
CVE-2017-8923 was published May 14, 2022
Insufficient data validation in Permission Prompts in Google Chrome prior to 117.0.5938.62... High Unreviewed
CVE-2023-7012 was published Jul 17, 2024
IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a... Moderate Unreviewed
CVE-2024-47102 was published Dec 25, 2024
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed
CVE-2024-41886 was published Dec 24, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database