GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,372
Composer 4,669
Erlang 34
GitHub Actions 26
Go 2,261
Maven 5,512
npm 3,910
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,338

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

253,338 advisories

Filter by severity

Sort by

Least recently updated

Out-of-bounds array read vulnerability in the FFRT module Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2024-57958 was published Feb 6, 2025

Use-After-Free (UAF) vulnerability in the display module Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2024-57959 was published Feb 6, 2025

Identity verification vulnerability in the ParamWatcher module Impact: Successful exploitation of... Moderate Unreviewed

CVE-2024-12602 was published Feb 6, 2025

Out-of-bounds write vulnerability in the emcom module Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2024-57961 was published Feb 6, 2025

Input verification vulnerability in the ExternalStorageProvider module Impact: Successful... High Unreviewed

CVE-2024-57960 was published Feb 6, 2025

Sandbox escape in the JavaScript Task feature of Google Cloud Application Integration allows an... Critical Unreviewed

CVE-2025-0982 was published Feb 6, 2025

The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin for WordPress is... Moderate Unreviewed

CVE-2025-0859 was published Feb 6, 2025

NULL pointer dereference vulnerability exists in Defense Platform Home Edition Ver.3.9.51.x and... Moderate Unreviewed

CVE-2025-24483 was published Feb 6, 2025

Improper neutralization of argument delimiters in a command ('Argument Injection') issue exists... Moderate Unreviewed

CVE-2025-24845 was published Feb 6, 2025

Buffer overflow vulnerability exists in Defense Platform Home Edition Ver.3.9.51.x and earlier.... High Unreviewed

CVE-2025-23236 was published Feb 6, 2025

Unprotected Windows messaging channel ('Shatter') issue exists in Defense Platform Home Edition... Moderate Unreviewed

CVE-2025-22894 was published Feb 6, 2025

The The CURCY – Multi Currency for WooCommerce – The best free currency exchange plugin – Run... High Unreviewed

CVE-2024-13487 was published Feb 6, 2025

Execution with unnecessary privileges issue exists in Defense Platform Home Edition Ver.3.9.51.x... Moderate Unreviewed

CVE-2025-22890 was published Feb 6, 2025

Unprotected Windows messaging channel ('Shatter') issue exists in Defense Platform Home Edition... High Unreviewed

CVE-2025-20094 was published Feb 6, 2025

IBM ApplinX 11.1 could allow a remote attacker to hijack the clicking action of the victim. By... Moderate Unreviewed

CVE-2024-49796 was published Feb 6, 2025

IBM ApplinX 11.1 stores sensitive information in cleartext in memory that could be obtained by an... Moderate Unreviewed

CVE-2024-49800 was published Feb 6, 2025

IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an... Moderate Unreviewed

CVE-2024-49791 was published Feb 6, 2025

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 could allow an attacker to spoof their IP address,... Moderate Unreviewed

CVE-2024-56473 was published Feb 6, 2025

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 does not properly rate limit the frequency that an... Moderate Unreviewed

CVE-2024-38316 was published Feb 6, 2025

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to stored cross-site scripting. This... Moderate Unreviewed

CVE-2024-56472 was published Feb 6, 2025

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to HTML injection. A remote attacker... Moderate Unreviewed

CVE-2024-38318 was published Feb 6, 2025

A prototype pollution in the lib.post function of ajax-request v1.2.3 allows attackers to cause a... High Unreviewed

CVE-2024-57076 was published Feb 6, 2025

A prototype pollution in the lib.fromQuery function of underscore-contrib v0.3.0 allows attackers... High Unreviewed

CVE-2024-57081 was published Feb 6, 2025

Use of Hard-coded Credentials vulnerability in ABB ASPECT-Enterprise, ABB NEXUS Series, ABB... Critical Unreviewed

CVE-2024-51547 was published Feb 6, 2025

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to cross-site scripting. This... Moderate Unreviewed

CVE-2024-38317 was published Feb 6, 2025

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

253,338 advisories