Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

96,288 advisories

Loading
A flaw was found in the quarkus-resteasy extension, which causes memory leaks when client... High Unreviewed
CVE-2025-1634 was published Feb 26, 2025
A vulnerability in the health monitoring diagnostics of Cisco Nexus 3000 Series Switches and... High Unreviewed
CVE-2025-20111 was published Feb 26, 2025
The WPMovieLibrary WordPress plugin through 2.1.4.8 does not sanitise and escape a parameter... High Unreviewed
CVE-2024-13624 was published Feb 26, 2025
The Simple Certain Time to Show Content WordPress plugin before 1.3.1 does not sanitise and... High Unreviewed
CVE-2024-10152 was published Feb 26, 2025
The Post Timeline WordPress plugin before 2.3.10 does not sanitise and escape a parameter before... High Unreviewed
CVE-2024-13571 was published Feb 26, 2025
The Simple:Press Forum WordPress plugin before 6.10.11 does not sanitise and escape a parameter... High Unreviewed
CVE-2024-10483 was published Feb 26, 2025
The Custom Block Builder WordPress plugin before 3.8.3 does not sanitise and escape a parameter... High Unreviewed
CVE-2024-12878 was published Feb 26, 2025
The WP Extra Fields WordPress plugin through 1.0.1 does not sanitise and escape a parameter... High Unreviewed
CVE-2024-13632 was published Feb 26, 2025
The Om Stripe WordPress plugin through 02.00.00 does not sanitise and escape a parameter before... High Unreviewed
CVE-2024-13631 was published Feb 26, 2025
Improper Input Validation vulnerability in The Document Foundation LibreOffice allows Windows... High Unreviewed
CVE-2025-0514 was published Feb 26, 2025
NVIDIA Jetson Linux and IGX OS image contains a vulnerability in the UEFI firmware RCM boot mode,... High Unreviewed
CVE-2024-0148 was published Feb 25, 2025
Buffer overflow in some Zoom Apps may allow an authenticated user to conduct an escalation of... High Unreviewed
CVE-2024-45421 was published Feb 25, 2025
Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows... High Unreviewed
CVE-2024-36259 was published Feb 25, 2025
There is an untrusted search path vulnerability in Esri ArcGIS AllSource 1.2 and 1.3 that may... High Unreviewed
CVE-2025-1068 was published Feb 25, 2025
There is an untrusted search path vulnerability in Esri ArcGIS Pro 3.3 and 3.4 that may allow a... High Unreviewed
CVE-2025-1067 was published Feb 25, 2025
A use-after-free flaw was found in X.Org and Xwayland. When a device is removed while still... High Unreviewed
CVE-2025-26600 was published Feb 25, 2025
A buffer overflow flaw was found in X.Org and Xwayland. If XkbChangeTypesOfKey() is called with a... High Unreviewed
CVE-2025-26597 was published Feb 25, 2025
An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice()... High Unreviewed
CVE-2025-26598 was published Feb 25, 2025
A use-after-free flaw was found in X.Org and Xwayland. When changing an alarm, the values of the... High Unreviewed
CVE-2025-26601 was published Feb 25, 2025
An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function... High Unreviewed
CVE-2025-26599 was published Feb 25, 2025
A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText() allocates a... High Unreviewed
CVE-2025-26595 was published Feb 25, 2025
A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in... High Unreviewed
CVE-2025-26596 was published Feb 25, 2025
A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X... High Unreviewed
CVE-2025-26594 was published Feb 25, 2025
The "update" binary in the firmware of the affected product sends attempts to mount to a hard... High Unreviewed
CVE-2025-1204 was published Feb 25, 2025
Improper access control in the auth_oauth module of Odoo Community 15.0 and Odoo Enterprise 15.0... High Unreviewed
CVE-2024-12368 was published Feb 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database