GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,063
Composer 4,318
Erlang 31
GitHub Actions 21
Go 2,074
Maven 5,249
npm 3,746
NuGet 674
pip 3,434
Pub 12
RubyGems 892
Rust 880
Swift 37

Unreviewed advisories

All unreviewed 241,079

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

112,465 advisories

Filter by severity

Sort by

Least recently updated

NEC Corporation Aterm WX1500HP Ver.1.4.2 and earlier and WX3600HP Ver.1.5.3 and earlier allows a... Moderate Unreviewed

CVE-2025-0356 was published Jan 15, 2025

A ZigBee coordinator, router, or end device may change their node ID when an unsolicited... Moderate Unreviewed

CVE-2024-7322 was published Jan 15, 2025

The Event Registration Calendar By vcita plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-11870 was published Jan 15, 2025

The ViewMedica 9 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-13394 was published Jan 15, 2025

Dell Display Manager, versions prior to 2.3.2.20, contain a race condition vulnerability. A local... Moderate Unreviewed

CVE-2025-21101 was published Jan 15, 2025

Dell Display Manager, versions prior to 2.3.2.18, contain a Time-of-check Time-of-use (TOCTOU)... Moderate Unreviewed

CVE-2025-22394 was published Jan 15, 2025

The Car Demon plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2024-13334 was published Jan 15, 2025

A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection... Moderate Unreviewed

CVE-2024-50312 was published Oct 22, 2024

A potential buffer overflow vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo... Moderate Unreviewed

CVE-2024-10254 was published Jan 15, 2025

A flaw was found in rsync. This vulnerability arises from a race condition during rsync's... Moderate Unreviewed

CVE-2024-12747 was published Jan 14, 2025

A privilege escalation vulnerability was discovered that could allow a valid, authenticated LXCA... Moderate Unreviewed

CVE-2024-45102 was published Jan 15, 2025

A potential TOCTOU vulnerability was reported in PC Manager, Lenovo Browser, and Lenovo App Store... Moderate Unreviewed

CVE-2024-10253 was published Jan 15, 2025

A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc... Moderate Unreviewed

CVE-2024-12087 was published Jan 14, 2025

A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file... Moderate Unreviewed

CVE-2024-12086 was published Jan 14, 2025

A flaw was found in rsync. When using the `--safe-links` option, rsync fails to properly verify... Moderate Unreviewed

CVE-2024-12088 was published Jan 14, 2025

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to bypass to user... Moderate Unreviewed

CVE-2024-4444 was published May 14, 2024

The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator... Moderate Unreviewed

CVE-2023-6877 was published Apr 7, 2024

Cleartext transmission of sensitive information vulnerability in synorelayd in Synology... Moderate Unreviewed

CVE-2021-26565 was published May 24, 2022

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2021-33182 was published May 24, 2022

Cleartext transmission of sensitive information vulnerability in DDNS in Synology DiskStation... Moderate Unreviewed

CVE-2020-27656 was published May 24, 2022

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2022-22679 was published Feb 8, 2022

There is a use-after-free issue in all samba 4.9.x versions before 4.9.18, all samba 4.10.x... Moderate Unreviewed

CVE-2019-19344 was published May 24, 2022

All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an... Moderate Unreviewed

CVE-2019-14907 was published May 24, 2022

An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM)... Moderate Unreviewed

CVE-2017-16766 was published May 13, 2022

Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of... Moderate Unreviewed

CVE-2019-9516 was published May 24, 2022

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

112,465 advisories