Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,770
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,169 advisories

Loading
A vulnerability was found in Bharti Airtel Xstream Fiber up to 20250123. It has been rated as... Low Unreviewed
CVE-2025-1081 was published Feb 6, 2025
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed... Low Unreviewed
CVE-2024-56467 was published Feb 6, 2025
When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could... Low Unreviewed
CVE-2025-0167 was published Feb 5, 2025
Out-of-bounds read vulnerability in the interpreter string module Impact: Successful exploitation... Low Unreviewed
CVE-2024-57956 was published Feb 6, 2025
An issue was discovered in GitLab CE/EE affecting all versions prior to 16.11.6, starting from 17... Low Unreviewed
CVE-2024-5528 was published Feb 5, 2025
An insufficient verification of data authenticity vulnerability exists in BIG-IP APM Access... Low Unreviewed
CVE-2025-23415 was published Feb 5, 2025
A vulnerability in the implementation of the remote access functionality of Cisco AsyncOS... Low Unreviewed
CVE-2025-20185 was published Feb 5, 2025
A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed
CVE-2024-44172 was published Jan 28, 2025
ManageEngine Endpoint Central versions before 11.3.2440.09 are vulnerable to IDOR vulnerability... Low Unreviewed
CVE-2024-9097 was published Feb 5, 2025
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.7... Low Unreviewed
CVE-2025-24100 was published Jan 28, 2025
An authentication issue was addressed with improved state management. This issue is fixed in iOS... Low Unreviewed
CVE-2025-24141 was published Jan 28, 2025
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote... Low Unreviewed
CVE-2024-45658 was published Feb 4, 2025
Authentication Bypass Using an Alternate Path in Galaxy Store prior to version 4.5.87.6 allows... Low Unreviewed
CVE-2025-20895 was published Feb 4, 2025
Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of... Low Unreviewed
CVE-2025-22475 was published Feb 4, 2025
Missing password field masking in the Zoom Jenkins Marketplace plugin before version 1.6 may... Low Unreviewed
CVE-2025-0148 was published Feb 4, 2025
A use of hard-coded cryptographic key in Fortinet FortiClientWindows version 7.4.0, 7.2.x all... Low Unreviewed
CVE-2024-50564 was published Jan 14, 2025
An improper neutralization of script-related html tags in a web page (basic xss) in Fortinet... Low Unreviewed
CVE-2024-52967 was published Jan 14, 2025
07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net... Low Unreviewed
CVE-2024-57159 was published Jan 16, 2025
07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin... Low Unreviewed
CVE-2024-57611 was published Jan 16, 2025
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation... Low Unreviewed
CVE-2025-23073 was published Jan 14, 2025
The Crelly Slider WordPress plugin before 1.4.7 does not sanitise and escape some of its settings... Low Unreviewed
CVE-2024-13116 was published Jan 27, 2025
A vulnerability, which was classified as critical, has been found in MaxD Lightning Module 4.43... Low Unreviewed
CVE-2025-0974 was published Feb 3, 2025
Dell PowerProtect DD versions prior to 7.10.1.50 and 7.13.1.20 contain a Stack-based Buffer... Low Unreviewed
CVE-2024-53296 was published Feb 1, 2025
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS... Low Unreviewed
CVE-2024-54516 was published Jan 28, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Low Unreviewed
CVE-2023-42240 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database