GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,323
Composer 4,359
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,776

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

114,403 advisories

Filter by severity

Sort by

Least recently updated

The Forminator Forms WordPress plugin before 1.38.3 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2024-7052 was published Feb 14, 2025

In the Linux kernel, the following vulnerability has been resolved: fs/proc: fix softlockup in... Moderate Unreviewed

CVE-2025-21694 was published Feb 12, 2025

In the Linux kernel, the following vulnerability has been resolved: mm: clear uffd-wp PTE/PMD... Moderate Unreviewed

CVE-2025-21696 was published Feb 12, 2025

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-uart... Moderate Unreviewed

CVE-2025-21695 was published Feb 12, 2025

In the Linux kernel, the following vulnerability has been resolved: Revert "libfs: fix infinite... Moderate Unreviewed

CVE-2024-57952 was published Feb 12, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-27965 was published Mar 21, 2024

Cross Site Scripting vulnerability in Daylight Studio Fuel CMS v.1.5.2 allows an attacker to... Moderate Unreviewed

CVE-2024-57605 was published Feb 13, 2025

Monica 4.1.2 is vulnerable to Cross Site Scripting (XSS). A malicious user can create a malformed... Moderate Unreviewed

CVE-2024-54951 was published Feb 14, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-27963 was published Mar 21, 2024

Missing Authorization vulnerability in Jean-David Daviet Download Media.This issue affects... Moderate Unreviewed

CVE-2024-27190 was published Mar 21, 2024

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c. Moderate Unreviewed

CVE-2024-26462 was published Feb 29, 2024

Improper access control in the notification feature in Devolutions Server 2023.3.14.0 and earlier... Moderate Unreviewed

CVE-2024-1898 was published Mar 6, 2024

In the Linux kernel, the following vulnerability has been resolved: sysctl: Fix out of bounds... Moderate Unreviewed

CVE-2023-52596 was published Mar 6, 2024

In the Linux kernel, the following vulnerability has been resolved: IB/ipoib: Fix mcast list... Moderate Unreviewed

CVE-2023-52587 was published Mar 6, 2024

In the Linux kernel, the following vulnerability has been resolved: ocfs2: Avoid touching... Moderate Unreviewed

CVE-2023-52590 was published Mar 6, 2024

The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-2127 was published Mar 7, 2024

A cross-site scripting (XSS) vulnerability in the Addon JD Flusity 'Social block links' module of... Moderate Unreviewed

CVE-2024-26489 was published Feb 22, 2024

An issue found in Eteran edb-debugger v.1.3.0 allows a local attacker to causea denial of service... Moderate Unreviewed

CVE-2023-27734 was published Apr 4, 2023

Inadequate input validation for media selection fields lead to XSS vulnerabilities in various... Moderate Unreviewed

CVE-2024-21724 was published Feb 29, 2024

An arbitrary file upload vulnerability in the Add Media function of SKINsoft S-Museum v7.02.3... Moderate Unreviewed

CVE-2024-25801 was published Feb 22, 2024

The Page Builder: Pagelayer WordPress plugin before 1.8.1 does not sanitise and escape some of... Moderate Unreviewed

CVE-2023-7115 was published Feb 27, 2024

An issue was discovered in Couchbase Server through 7.2.2. A data reader may cause a denial of... Moderate Unreviewed

CVE-2023-45874 was published Feb 29, 2024

An issue was discovered in Stormshield Network Security (SNS) 3.7.0 through 3.7.38 before 3.7.39,... Moderate Unreviewed

CVE-2023-41165 was published Feb 29, 2024

A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021... Moderate Unreviewed

CVE-2021-25394 was published May 24, 2022

An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release... Moderate Unreviewed

CVE-2021-25370 was published May 24, 2022

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

114,403 advisories