GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,369
Composer 4,373
Erlang 33
GitHub Actions 22
Go 2,135
Maven 5,313
npm 3,797
NuGet 687
pip 3,478
Pub 12
RubyGems 896
Rust 897
Swift 38

Unreviewed advisories

All unreviewed 245,367

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,333 advisories

Filter by severity

Sort by

Least recently updated

The facial recognition module has a vulnerability in input parameter verification. Successful... High Unreviewed

CVE-2022-48356 was published Mar 28, 2023

Improper input validation in the PDF.dll plugin of IrfanView v4.60 allows attackers to execute... High Unreviewed

CVE-2023-24304 was published Mar 28, 2023

The Uncode theme for WordPress is vulnerable to arbitrary file read due to insufficient input... High Unreviewed

CVE-2024-13681 was published Feb 18, 2025

An authenticated user in the "bestinformed Web" application can execute commands on the... High Unreviewed

CVE-2025-0422 was published Feb 18, 2025

When incoming DNS over HTTPS support is enabled using the nghttp2 provider, and queries are... High Unreviewed

CVE-2024-25581 was published May 14, 2024

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames... High Unreviewed

CVE-2023-39456 was published Oct 17, 2023

Improper Input Validation vulnerability in the ContentType parameter for attachments on... High Unreviewed

CVE-2023-38060 was published Jul 24, 2023

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... High Unreviewed

CVE-2023-30445 was published Jul 10, 2023

IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... High Unreviewed

CVE-2023-30448 was published Jul 10, 2023

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... High Unreviewed

CVE-2023-30449 was published Jul 10, 2023

A crafted response from an upstream server the recursor has been configured to forward-recurse to... High Unreviewed

CVE-2024-25583 was published Apr 25, 2024

ModSecurity / libModSecurity 3.0.0 to 3.0.11 is affected by a WAF bypass for path-based payloads... High Unreviewed

CVE-2024-1019 was published Jan 30, 2024

Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments.... High Unreviewed

CVE-2023-47804 was published Dec 29, 2023

Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server. The... High Unreviewed

CVE-2023-30631 was published Jun 14, 2023

CWE-20: Improper Input Validation vulnerability exists that could cause Denial-of-Service of the... High Unreviewed

CVE-2025-0816 was published Feb 13, 2025

CWE-20: Improper Input Validation vulnerability exists that could cause Denial-of-Service of the... High Unreviewed

CVE-2025-0815 was published Feb 13, 2025

Improper input validation in the firmware for some Intel(R) AMT and Intel(R) Standard... High Unreviewed

CVE-2024-38307 was published Feb 13, 2025

Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged... High Unreviewed

CVE-2024-28127 was published Feb 13, 2025

Improper input validation in UEFI firmware CseVariableStorageSmm for some Intel(R) Processors may... High Unreviewed

CVE-2024-29214 was published Feb 13, 2025

Improper input validation in UEFI firmware for some Intel(R) processors may allow a privileged... High Unreviewed

CVE-2023-43758 was published Feb 13, 2025

Improper input validation in XmlCli feature for UEFI firmware for some Intel(R) processors may... High Unreviewed

CVE-2024-24582 was published Feb 13, 2025

Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged... High Unreviewed

CVE-2023-34440 was published Feb 13, 2025

Improper input validation in some Intel(R) System Security Report and System Resources Defense... High Unreviewed

CVE-2023-49615 was published Feb 13, 2025

Improper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM,... High Unreviewed

CVE-2023-31343 was published Feb 12, 2025

Improper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM,... High Unreviewed

CVE-2023-31345 was published Feb 12, 2025

Previous 1 2 3 4 5 … 173 174 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,333 advisories