GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,874
Erlang
37
GitHub Actions
36
Go
2,520
Maven
5,000+
npm
4,160
NuGet
741
pip
3,961
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
270,945 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: l2cap: Check...
Unknown
Unreviewed
CVE-2025-39889
was published
Sep 24, 2025
The MultiLoca - WooCommerce Multi Locations Inventory Management plugin for WordPress is...
Critical
Unreviewed
CVE-2025-9054
was published
Sep 24, 2025
In the Linux kernel, the following vulnerability has been resolved:
wifi: ath12k: fix memory...
Unknown
Unreviewed
CVE-2025-39890
was published
Sep 24, 2025
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: hci_core: Disable...
Unknown
Unreviewed
CVE-2024-58241
was published
Sep 24, 2025
In the Linux kernel, the following vulnerability has been resolved:
ocfs2: fix data corruption...
Moderate
Unreviewed
CVE-2021-47460
was published
May 22, 2024
Improper permission check in ZooKeeper AdminServer lets authorized clients to run snapshot and...
Unknown
Unreviewed
CVE-2025-58457
was published
Sep 24, 2025
The database for the web application is exposed without authentication, allowing an...
Critical
Unreviewed
CVE-2025-41715
was published
Sep 24, 2025
Observable Timing Discrepancy vulnerability in DivvyDrive Information Technologies Inc....
Moderate
Unreviewed
CVE-2025-9031
was published
Sep 24, 2025
Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a...
High
Unreviewed
CVE-2025-58317
was published
Sep 24, 2025
The web application allows an unauthenticated remote attacker to learn information about existing...
Moderate
Unreviewed
CVE-2025-41716
was published
Sep 24, 2025
Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a...
High
Unreviewed
CVE-2025-58319
was published
Sep 24, 2025
Deserialization of Untrusted Data vulnerability in Apache IoTDB.
This issue affects Apache IoTDB...
Unknown
Unreviewed
CVE-2025-48459
was published
Sep 24, 2025
A vulnerability in Apache IoTDB.
This issue affects Apache IoTDB: from 1.3.3 through 1.3.4, from...
Unknown
Unreviewed
CVE-2025-48392
was published
Sep 24, 2025
Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric...
Moderate
Unreviewed
CVE-2025-8531
was published
Sep 19, 2025
Spreecommerce versions prior to 0.60.2 contains a remote command execution vulnerability in its...
Critical
Unreviewed
CVE-2011-10019
was published
Aug 13, 2025
A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3...
Moderate
Unreviewed
CVE-2025-43779
was published
Sep 24, 2025
In the Linux kernel, the following vulnerability has been resolved:
ice: Avoid crash from...
Moderate
Unreviewed
CVE-2021-47453
was published
May 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
netfilter: xt_IDLETIMER: fix...
Moderate
Unreviewed
CVE-2021-47451
was published
May 22, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/radeon: possible buffer...
High
Unreviewed
CVE-2023-52867
was published
May 21, 2024
In the Linux kernel, the following vulnerability has been resolved:
KVM: arm64: Fix host stage-2...
Moderate
Unreviewed
CVE-2021-47450
was published
May 22, 2024
ProTip!
Advisories are also available from the
GraphQL API