Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

190 advisories

Loading
NUT-14 allows cashu tokens to be created with a preimage hash. However, nutshell (cashubtc/nuts)... Critical Unreviewed
CVE-2025-65548 was published Dec 8, 2025
A data corruption vulnerability has been identified in the luksmeta utility when used with the... Moderate Unreviewed
CVE-2025-11568 was published Oct 15, 2025
IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could... Moderate Unreviewed
CVE-2025-36015 was published Dec 9, 2025
In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer... Moderate Unreviewed
CVE-2025-59820 was published Nov 26, 2025
NVIDIA Triton Server for Linux contains a vulnerability where an attacker may cause an improper... High Unreviewed
CVE-2025-33211 was published Dec 3, 2025
A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the... High Unreviewed
CVE-2022-4904 was published Mar 7, 2023
In the Linux kernel, the following vulnerability has been resolved: mm/damon/ops-common: ignore... Moderate Unreviewed
CVE-2025-39700 was published Sep 5, 2025
Inconsistent object size validation in time series processing logic may result in later... High Unreviewed
CVE-2025-13507 was published Nov 25, 2025
The security state of the calling processor into Arm® Trusted Firmware (TF-A) is not used and... High Unreviewed
CVE-2025-48507 was published Nov 23, 2025
The Secure Flag passed to Versal™ Adaptive SoC’s Arm® Trusted Firmware for Cortex®-A processors ... Low Unreviewed
CVE-2025-54515 was published Nov 23, 2025
Improper Validation of Specified Quantity in Input vulnerability in TCP Communication Function on... Moderate Unreviewed
CVE-2025-10259 was published Nov 6, 2025
In the Linux kernel, the following vulnerability has been resolved: ext4: avoid resizing to a... Moderate Unreviewed
CVE-2022-50020 was published Jun 18, 2025
N-central < 2025.4 can generate sessionIDs for unauthenticated users This issue affects N... Moderate Unreviewed
CVE-2025-9316 was published Nov 12, 2025
Faulty input validation in the core of Apache allows malicious or exploitable backend/content... High Unreviewed
CVE-2023-38709 was published Apr 4, 2024
Django vulnerable to denial-of-service attack Moderate
CVE-2024-41991 was published for Django (pip) Aug 7, 2024
Django Denial-of-service in django.utils.text.Truncator High
CVE-2023-43665 was published for Django (pip) Nov 3, 2023
Django Denial of service vulnerability in django.utils.encoding.uri_to_iri Moderate
CVE-2023-41164 was published for django (pip) Nov 3, 2023
The ctl_report_supported_opcodes function did not sufficiently validate a field provided by... High Unreviewed
CVE-2024-42416 was published Sep 5, 2024
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site... Moderate Unreviewed
CVE-2022-31629 was published Sep 29, 2022
Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the input... High Unreviewed
CVE-2022-26125 was published Mar 4, 2022
A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to a wrong check on the... High Unreviewed
CVE-2022-26128 was published Mar 4, 2022
A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to missing a check on the... High Unreviewed
CVE-2022-26127 was published Mar 4, 2022
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix not... High Unreviewed
CVE-2024-35964 was published May 20, 2024
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sock: Fix not... High Unreviewed
CVE-2024-35963 was published May 20, 2024
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has... Low Unreviewed
CVE-2025-32415 was published Apr 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database