Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

1,059 advisories

Loading
An XML External Entity (XXE) vulnerability in Elspec Engineering G5 Digital Fault Recorder... High Unreviewed
CVE-2024-46603 was published Jan 7, 2025
An issue was discovered in Elspec G5 digital fault recorder version 1.2.1.12 and earlier. An XML... High Unreviewed
CVE-2024-46602 was published Jan 7, 2025
We found a vulnerability Improper Restriction of XML External Entity Reference (CWE-611) in NB... Moderate Unreviewed
CVE-2024-12298 was published Jan 14, 2025
CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could... High Unreviewed
CVE-2024-12476 was published Jan 17, 2025
In multiple functions of UserDictionaryProvider.java, there is a possible way to add and delete... High Unreviewed
CVE-2018-9375 was published Jan 18, 2025
In multiple functions of MiniThumbFile.java, there is a possible way to view the thumbnails of... Moderate Unreviewed
CVE-2018-9379 was published Jan 18, 2025
An XML External Entity (XXE) vulnerability exists in the Ambari/Oozie project, allowing an... High Unreviewed
CVE-2025-23195 was published Jan 22, 2025
BigFix Patch Download Plug-ins are affected by an insecure package which is susceptible to XML... Low Unreviewed
CVE-2024-42185 was published Jan 23, 2025
XXE vulnerability in XSLT parsing in `org.hl7.fhir.publisher` High
CVE-2024-52807 was published for org.hl7.fhir.publisher:org.hl7.fhir.publisher.cli (Maven) Jan 24, 2025
dotasek
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database