Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
50
Go
3,606
Maven
5,000+
npm
5,000+
NuGet
924
pip
4,831
Pub
13
RubyGems
1,045
Rust
1,256
Swift
53
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

868 advisories

Loading
Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could... High Unreviewed
CVE-2025-54502 was published Apr 16, 2026
Hashgraph Guardian through version 3.5.0 contains an unsandboxed JavaScript execution... High Unreviewed
CVE-2026-39911 was published Apr 9, 2026
The Author Box, Guest Author and Co-Authors for Your Posts – Molongui plugin for WordPress is... Moderate Unreviewed
CVE-2023-7014 was published Feb 6, 2024
Philips MRI 1.5T and MRI 3T Version 5.x.x exposes sensitive information to an actor not... Moderate Unreviewed
CVE-2021-42744 was published Nov 20, 2021
A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an... Critical Unreviewed
CVE-2026-20160 was published Apr 1, 2026
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC... High Unreviewed
CVE-2026-33573 was published Mar 29, 2026
The WP STAGING WordPress Backup plugin before 3.2.0 allows access to cache files during the... High Unreviewed
CVE-2023-7204 was published Jan 29, 2024
An issue in Fronius Datalogger Web v.2.0.5-4, allows remote attackers to obtain sensitive... Critical Unreviewed
CVE-2023-37621 was published Feb 1, 2024
In Montala ResourceSpace through 9.8 before r19636, csv_export_results_metadata.php allows... Moderate Unreviewed
CVE-2022-31260 was published Jul 18, 2022
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure... Low Unreviewed
CVE-2021-36319 was published Nov 21, 2021
The WP Job Openings WordPress plugin before 3.4.3 does not block listing the contents of the... Moderate Unreviewed
CVE-2023-4933 was published Oct 16, 2023
The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly... Moderate Unreviewed
CVE-2026-2297 was published Mar 5, 2026
Exposure of resource to wrong sphere in the UEFI PdaSmm module for some Intel(R) reference... Moderate Unreviewed
CVE-2025-22444 was published Mar 11, 2026
Error in parser function in M-Files Server versions before 22.6.11534.1 and before 22.6.11505.0... Moderate Unreviewed
CVE-2022-1911 was published Nov 30, 2022
Binding to an unrestricted ip address in Azure IoT SDK allows an unauthorized attacker to... Moderate Unreviewed
CVE-2026-21528 was published Feb 10, 2026
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix kernel crash due... Moderate Unreviewed
CVE-2025-37966 was published May 20, 2025
In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: Fix... High Unreviewed
CVE-2023-53392 was published Sep 18, 2025
In the Linux kernel, the following vulnerability has been resolved: riscv: fgraph: Fix stack... High Unreviewed
CVE-2025-22069 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: media: i2c: max9286: fix... High Unreviewed
CVE-2022-49509 was published Jan 22, 2026
In the Linux kernel, the following vulnerability has been resolved: arm64/entry: Mask DAIF in... High Unreviewed
CVE-2025-38670 was published Aug 22, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/imagination: Fix kernel... High Unreviewed
CVE-2025-38521 was published Aug 16, 2025
VB-Audio Matrix and Matrix Coconut (versions ending in 1.0.2.2 and 2.0.2.2 and earlier,... High Unreviewed
CVE-2026-23763 was published Jan 22, 2026
Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from... Critical Unreviewed
CVE-2025-25176 was published Jan 13, 2026
Ksenia Security Lares 4.0 Home Automation version 1.6 contains a critical security flaw that... Critical Unreviewed
CVE-2025-15114 was published Dec 31, 2025
The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code... Moderate Unreviewed
CVE-2023-30802 was published Oct 10, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database