GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,230
Composer 4,347
Erlang 31
GitHub Actions 22
Go 2,117
Maven 5,289
npm 3,768
NuGet 680
pip 3,457
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,675

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

243,675 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in Akamai Enterprise Application Access (EAA) before 2025-01-17. If an... High Unreviewed

CVE-2025-24527 was published Jan 29, 2025

Improper neutralization of argument delimiters in a command ('Argument Injection') issue exists... Moderate Unreviewed

CVE-2025-24845 was published Feb 6, 2025

Buffer overflow vulnerability exists in Defense Platform Home Edition Ver.3.9.51.x and earlier.... High Unreviewed

CVE-2025-23236 was published Feb 6, 2025

NULL pointer dereference vulnerability exists in Defense Platform Home Edition Ver.3.9.51.x and... Moderate Unreviewed

CVE-2025-24483 was published Feb 6, 2025

Unprotected Windows messaging channel ('Shatter') issue exists in Defense Platform Home Edition... Moderate Unreviewed

CVE-2025-22894 was published Feb 6, 2025

Execution with unnecessary privileges issue exists in Defense Platform Home Edition Ver.3.9.51.x... Moderate Unreviewed

CVE-2025-22890 was published Feb 6, 2025

The The CURCY – Multi Currency for WooCommerce – The best free currency exchange plugin – Run... High Unreviewed

CVE-2024-13487 was published Feb 6, 2025

Unprotected Windows messaging channel ('Shatter') issue exists in Defense Platform Home Edition... High Unreviewed

CVE-2025-20094 was published Feb 6, 2025

A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass... High Unreviewed

CVE-2025-0650 was published Jan 23, 2025

A vulnerability was found in Pagure. Support of symbolic links during repository archiving of... High Unreviewed

CVE-2024-47515 was published Dec 24, 2024

A vulnerability was found in pam_access due to the improper handling of tokens in access.conf,... Moderate Unreviewed

CVE-2024-10963 was published Nov 7, 2024

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... Critical Unreviewed

CVE-2023-6260 was published Feb 20, 2024

The Colibri WP theme for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed

CVE-2024-1360 was published Feb 23, 2024

A prototype pollution in the lib.fromQuery function of underscore-contrib v0.3.0 allows attackers... Unknown Unreviewed

CVE-2024-57081 was published Feb 6, 2025

IBM Security Verify Access Appliance 10.0.0 through 10.0.3 could allow a locally authenticated... High Unreviewed

CVE-2024-49814 was published Feb 6, 2025

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 does not properly rate limit the frequency that an... Moderate Unreviewed

CVE-2024-38316 was published Feb 6, 2025

A prototype pollution in the lib.createUploader function of @rpldy/uploader v1.8.1 allows... Unknown Unreviewed

CVE-2024-57082 was published Feb 6, 2025

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to server-side request forgery (SSRF).... Moderate Unreviewed

CVE-2024-56471 was published Feb 6, 2025

A security issue was found in Netplex Json-smart 2.5.0 through 2.5.1. When loading a specially... Unknown Unreviewed

CVE-2024-57699 was published Feb 6, 2025

IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an... Moderate Unreviewed

CVE-2024-49792 was published Feb 6, 2025

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to server-side request forgery (SSRF).... Moderate Unreviewed

CVE-2024-56470 was published Feb 6, 2025

IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to... Moderate Unreviewed

CVE-2024-49795 was published Feb 6, 2025

IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to... Moderate Unreviewed

CVE-2024-49794 was published Feb 6, 2025

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to cross-site scripting. This... Moderate Unreviewed

CVE-2024-38317 was published Feb 6, 2025

IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an... Moderate Unreviewed

CVE-2024-49793 was published Feb 6, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

243,675 advisories