GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,255
Erlang
31
GitHub Actions
21
Go
2,019
Maven
5,000+
npm
3,727
NuGet
662
pip
3,405
Pub
12
RubyGems
890
Rust
862
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
236,880 advisories
Filter by severity
The POSIX::2008 package before 0.24 for Perl has a potential _execve50c env buffer overflow.
Critical
Unreviewed
CVE-2024-55564
was published
Dec 9, 2024
The Simple Side Tab WordPress plugin before 2.2.0 does not sanitise and escape some of its...
Moderate
Unreviewed
CVE-2024-11183
was published
Dec 7, 2024
NTFS-3G before 75dcdc2 has a use-after-free in ntfs_uppercase_mbs in libntfs-3g/unistr.c. NOTE:...
Moderate
Unreviewed
CVE-2023-52890
was published
Jun 13, 2024
MailCleaner before 28d913e has default values of ssh_host_dsa_key, ssh_host_rsa_key, and...
Critical
Unreviewed
CVE-2024-55560
was published
Dec 9, 2024
Snap One OvrC cloud servers contain a route an attacker can use to bypass requirements and...
Critical
Unreviewed
CVE-2023-31241
was published
May 22, 2023
A user-provided integer option was passed to nmreq_copyin() without checking if it would overflow...
Critical
Unreviewed
CVE-2022-23085
was published
Feb 15, 2024
Resource reuse vulnerability in the GPU module. Successful exploitation of this vulnerability may...
High
Unreviewed
CVE-2023-52387
was published
Feb 18, 2024
Vulnerability of defects introduced in the design process in the Control Panel module.Successful...
Moderate
Unreviewed
CVE-2023-52363
was published
Feb 18, 2024
Stack overflow vulnerability in the NFC module.Successful exploitation of this vulnerability may...
Critical
Unreviewed
CVE-2023-52369
was published
Feb 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
SUNRPC: Fix null pointer...
Moderate
Unreviewed
CVE-2021-47002
was published
Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
RDMA/siw: Fix a use after...
High
Unreviewed
CVE-2021-47012
was published
Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
mt76: mt7915: fix memleak...
Moderate
Unreviewed
CVE-2021-47021
was published
Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
KVM: SVM: Make sure GHCB is...
Moderate
Unreviewed
CVE-2021-47008
was published
Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
net:emac/emac-mac: Fix a use...
High
Unreviewed
CVE-2021-47013
was published
Feb 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
mt76: mt7615: fix memleak...
Moderate
Unreviewed
CVE-2021-47022
was published
Feb 28, 2024
The SystemUI module has a vulnerability in permission management.
Impact: Successful exploitation...
High
Unreviewed
CVE-2023-52715
was published
Apr 7, 2024
Out-of-bounds write vulnerability in the RSMC module.
Impact: Successful exploitation of this...
High
Unreviewed
CVE-2023-52386
was published
Apr 8, 2024
Vulnerability of permission control in the window module. Successful exploitation of this...
High
Unreviewed
CVE-2024-27895
was published
Apr 8, 2024
Vulnerability of permission verification in some APIs in the ActivityTaskManagerService module....
High
Unreviewed
CVE-2023-52359
was published
Apr 8, 2024
A permissions issue was addressed to help ensure Personas are always protected This issue is...
Moderate
Unreviewed
CVE-2024-23295
was published
Mar 8, 2024
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the topic parameter in...
Moderate
Unreviewed
CVE-2024-33122
was published
May 7, 2024
Path traversal vulnerability in the Bluetooth-based sharing module.
Impact: Successful...
High
Unreviewed
CVE-2024-30417
was published
Apr 7, 2024
The Fluent Forms WordPress plugin before 5.2.1 does not sanitise and escape some of its settings...
Moderate
Unreviewed
CVE-2024-9651
was published
Dec 9, 2024
Out-of-bounds read vulnerability in the smart activity recognition module.Successful exploitation...
Moderate
Unreviewed
CVE-2023-52365
was published
Feb 18, 2024
Snap One OvrC Pro versions prior to 7.2 have their own locally...
Critical
Unreviewed
CVE-2023-31240
was published
May 22, 2023
ProTip!
Advisories are also available from the
GraphQL API