GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 29,428
Composer 5,654
Erlang 49
GitHub Actions 50
Go 3,606
Maven 6,433
npm 5,910
NuGet 924
pip 4,831
Pub 13
RubyGems 1,045
Rust 1,256
Swift 53

Unreviewed advisories

All unreviewed 299,342

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

501 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Author Box, Guest Author and Co-Authors for Your Posts – Molongui plugin for WordPress is... Moderate Unreviewed

CVE-2023-7014 was published Feb 6, 2024

Philips MRI 1.5T and MRI 3T Version 5.x.x exposes sensitive information to an actor not... Moderate Unreviewed

CVE-2021-42744 was published Nov 20, 2021

In Montala ResourceSpace through 9.8 before r19636, csv_export_results_metadata.php allows... Moderate Unreviewed

CVE-2022-31260 was published Jul 18, 2022

The WP Job Openings WordPress plugin before 3.4.3 does not block listing the contents of the... Moderate Unreviewed

CVE-2023-4933 was published Oct 16, 2023

The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly... Moderate Unreviewed

CVE-2026-2297 was published Mar 5, 2026

Exposure of resource to wrong sphere in the UEFI PdaSmm module for some Intel(R) reference... Moderate Unreviewed

CVE-2025-22444 was published Mar 11, 2026

Error in parser function in M-Files Server versions before 22.6.11534.1 and before 22.6.11505.0... Moderate Unreviewed

CVE-2022-1911 was published Nov 30, 2022

Binding to an unrestricted ip address in Azure IoT SDK allows an unauthorized attacker to... Moderate Unreviewed

CVE-2026-21528 was published Feb 10, 2026

In the Linux kernel, the following vulnerability has been resolved: riscv: Fix kernel crash due... Moderate Unreviewed

CVE-2025-37966 was published May 20, 2025

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code... Moderate Unreviewed

CVE-2023-30802 was published Oct 10, 2023

A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions), SICAM... Moderate Unreviewed

CVE-2022-34464 was published Jul 13, 2022

An information disclosure vulnerability exists in the CtEnumCa() functionality of SoftEther VPN 4... Moderate Unreviewed

CVE-2023-32275 was published Oct 12, 2023

Microsoft Word Information Disclosure Vulnerability Moderate Unreviewed

CVE-2023-36761 was published Sep 12, 2023

In the Linux kernel, the following vulnerability has been resolved: tipc: fix kernel warning... Moderate Unreviewed

CVE-2023-52700 was published May 21, 2024

CWE-668: Exposure of Resource to Wrong Sphere vulnerability exists that exposes TGML diagram... Moderate Unreviewed

CVE-2025-6788 was published Jul 11, 2025

Software installed and running inside a Guest VM may override Firmware's state and gain access to... Moderate Unreviewed

CVE-2025-46707 was published Jun 27, 2025

An issue was discovered in Zoho ManageEngine Key Manager Plus 6.1.6. A user, with the level... Moderate Unreviewed

CVE-2022-24446 was published Mar 2, 2022

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12... Moderate Unreviewed

CVE-2022-32883 was published Sep 21, 2022

Improper handling of resource allocation in virtual machines can lead to information exposure in... Moderate Unreviewed

CVE-2021-1918 was published Jan 4, 2022

An issue in the handling of environment variables was addressed with improved validation. This... Moderate Unreviewed

CVE-2022-26707 was published Sep 25, 2022

Zammad 5.2.1 is vulnerable to Incorrect Access Control. Zammad's asset handling mechanism has... Moderate Unreviewed

CVE-2022-40816 was published Sep 28, 2022

IBM QRadar User Behavior Analytics could allow an authenticated user to obtain sensitive... Moderate Unreviewed

CVE-2022-36771 was published Sep 29, 2022

An information disclosure vulnerability in GitLab CE/EE affecting all versions starting from 9.3... Moderate Unreviewed

CVE-2022-3018 was published Oct 28, 2022

Improper isolation of shared resources in network on chip for the Intel(R) 82599 Ethernet... Moderate Unreviewed

CVE-2021-33096 was published Feb 11, 2022

"IBM InfoSphere Information Server 11.7 could allow an authenticated user to access information... Moderate Unreviewed

CVE-2022-22442 was published Nov 4, 2022

Previous1…21 Next

Previous 1 2 3 4 5 … 20 21 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

501 advisories