Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,346 advisories

Loading
The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows... High Unreviewed
CVE-2013-3894 was published May 13, 2022
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows attackers to execute... High Unreviewed
CVE-2005-3302 was published May 1, 2022
Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5; Silverlight 5 before 5.1.20513.0;... High Unreviewed
CVE-2013-3129 was published May 13, 2022
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5, iOS 16.7... High Unreviewed
CVE-2024-27856 was published Jan 15, 2025
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval... High Unreviewed
CVE-2023-33440 was published May 26, 2023
Windows Search Service Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21292 was published Jan 14, 2025
Microsoft Power Automate Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21187 was published Jan 14, 2025
The administrator is able to configure an insecure captive portal script High Unreviewed
CVE-2024-9132 was published Jan 11, 2025
An issue was discovered in South River Technologies TitanFTP NextGen server that allows for a... High Unreviewed
CVE-2023-27744 was published Jun 2, 2023
Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2-... High Unreviewed
CVE-2024-30962 was published Dec 6, 2024
Reportlab vulnerable to remote code execution High
CVE-2023-33733 was published for reportlab (pip) Jun 5, 2023
m3t3kh4n
An authenticated arbitrary file upload vulnerability in the component /module_admin/upload.php of... High Unreviewed
CVE-2024-53564 was published Dec 2, 2024
The Post Saint: ChatGPT, GPT4, DALL-E, Stable Diffusion, Pexels, Dezgo AI Text & Image Generator... High Unreviewed
CVE-2024-12471 was published Jan 7, 2025
A potential security vulnerability has been identified with a version of the HP Softpaq installer... High Unreviewed
CVE-2019-16283 was published Jun 9, 2023
The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode... High Unreviewed
CVE-2024-11733 was published Jan 4, 2025
Server Side Template Injection (SSTI) via Twig escape handler High
CVE-2024-28119 was published for getgrav/grav (Composer) Mar 22, 2024
as3617 juckchang
Server Side Template Injection (SSTI) High
CVE-2024-28118 was published for getgrav/grav (Composer) Mar 22, 2024
as3617 juckchang
Server Side Template Injection (SSTI) High
CVE-2024-28117 was published for getgrav/grav (Composer) Mar 22, 2024
as3617 juckchang
.NET Remote Code Execution Vulnerability High
CVE-2022-41089 was published for Microsoft.WindowsDesktop.App.Runtime.win-arm64 (NuGet) Dec 14, 2022
tdunlap607
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is... High Unreviewed
CVE-2022-37982 was published Oct 12, 2022
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2022-30141 was published Jun 16, 2022
Windows Encrypting File System (EFS) Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-30145 was published Jun 16, 2022
Windows Fax Service Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-29115 was published May 11, 2022
An issue in smarts-srl.com Smart Agent v.1.1.0 allows a remote attacker to obtain sensitive... High Unreviewed
CVE-2024-50715 was published Dec 27, 2024
TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Remote Code Execution in /bin/boa via... High Unreviewed
CVE-2024-54907 was published Dec 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database