Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,339
Erlang
31
GitHub Actions
22
Go
2,099
Maven
5,000+
npm
3,763
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+

102,822 advisories

Loading
In Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06, the request /goform/fromSetDDNS does... High Unreviewed
CVE-2024-48418 was published Jan 27, 2025
Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 is vulnerable to Buffer Overflow via ... High Unreviewed
CVE-2024-48420 was published Jan 27, 2025
In AXESS ACS (Auto Configuration Server) through 5.2.0, unsanitized user input in the TR069 API... High Unreviewed
CVE-2024-56316 was published Jan 28, 2025
CMSimple 5.16 allows the user to read cms source code through manipulation of the file name in... High Unreviewed
CVE-2024-57549 was published Jan 28, 2025
An integer overflow was addressed through improved input validation. This issue is fixed in macOS... High Unreviewed
CVE-2025-24156 was published Jan 28, 2025
Insecure Permissions vulnerability in CMSimple v.5.16 allows a remote attacker to obtain... High Unreviewed
CVE-2024-57547 was published Jan 28, 2025
A type confusion issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4,... High Unreviewed
CVE-2025-24137 was published Jan 28, 2025
A flaw was found in the rsync daemon which could be triggered when rsync compares file checksums.... High Unreviewed
CVE-2024-12085 was published Jan 14, 2025
Edimax AC1200 Wi-Fi 5 Dual-Band Router BR-6476AC 1.06 suffers from Command Injection issues in ... High Unreviewed
CVE-2024-48419 was published Jan 27, 2025
An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3... High Unreviewed
CVE-2023-28128 was published May 10, 2023
An issue was discovered in Exynos Mobile Processor and Modem for Exynos Modem 5123, Exynos Modem... High Unreviewed
CVE-2023-29092 was published May 9, 2023
The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0... High Unreviewed
CVE-2015-4852 was published May 14, 2022
The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome... High Unreviewed
CVE-2016-1646 was published May 14, 2022
A Credential Exposure Vulnerability exists in the above-mentioned product and version. The... High Unreviewed
CVE-2025-0631 was published Jan 28, 2025
In TBD of TBD, there is a possible use-after-free due to a logic error in the code. This could... High Unreviewed
CVE-2024-40649 was published Jan 28, 2025
A denial-of-service vulnerability exists in the affected products. The vulnerability could allow... High Unreviewed
CVE-2025-24478 was published Jan 28, 2025
In TBD of TBD, there is a possible use-after-free due to a logic error in the code. This could... High Unreviewed
CVE-2024-40651 was published Jan 28, 2025
A Local Code Injection Vulnerability exists in the product and version listed above. The... High Unreviewed
CVE-2025-24482 was published Jan 28, 2025
A Local Code Execution Vulnerability exists in the product and version listed above. The... High Unreviewed
CVE-2025-24479 was published Jan 28, 2025
In shouldSkipForInitialSUW of AdvancedPowerUsageDetail.java, there is a possible way to bypass... High Unreviewed
CVE-2024-40677 was published Jan 28, 2025
In TBD of TBD, there is a possible use after free due to a race condition. This could lead to... High Unreviewed
CVE-2024-40670 was published Jan 28, 2025
An Incorrect Permission Assignment Vulnerability exists in the product and version listed above.... High Unreviewed
CVE-2025-24481 was published Jan 28, 2025
In onCreate of ChooserActivity.java, there is a possible way to bypass factory reset protections... High Unreviewed
CVE-2024-40672 was published Jan 28, 2025
Avi Load Balancer contains an unauthenticated blind SQL Injection vulnerability which was... High Unreviewed
CVE-2025-22217 was published Jan 28, 2025
In RGXMMUCacheInvalidate of rgxmem.c, there is a possible arbitrary code execution due to a race... High Unreviewed
CVE-2024-34732 was published Jan 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database