Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,360
Erlang
33
GitHub Actions
22
Go
2,127
Maven
5,000+
npm
3,793
NuGet
683
pip
3,471
Pub
12
RubyGems
894
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,915 advisories

Loading
Improper Input Validation vulnerability in WatchGuard Fireware OS allows an attacker to... Moderate Unreviewed
CVE-2025-0178 was published Feb 14, 2025
CWE-20: Improper Input Validation vulnerability exists that could cause Denial-of-Service of the... Moderate Unreviewed
CVE-2025-0814 was published Feb 13, 2025
CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of... Moderate Unreviewed
CVE-2024-10083 was published Feb 13, 2025
Improper input validation in some Intel(R) Graphics Drivers may allow an authenticated user to... Moderate Unreviewed
CVE-2024-42410 was published Feb 13, 2025
Improper input validation in some Intel(R) PROSet/Wireless WiFi and Killerâ„¢ WiFi software for... Moderate Unreviewed
CVE-2024-39606 was published Feb 13, 2025
Improper input validation for some Intel(R) QuickAssist Technology software before version 2.2.0... Moderate Unreviewed
CVE-2024-31153 was published Feb 13, 2025
Improper input validation in some Intel(R) SPS firmware before SPS_E5_06.01.04.059.0 may allow a... Moderate Unreviewed
CVE-2024-25571 was published Feb 13, 2025
Improper input validation in UEFI firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed
CVE-2024-28047 was published Feb 13, 2025
A CWE-20 "Improper Input Validation" in ldbMT.so in Q-Free MaxTime less than or equal to version... Moderate Unreviewed
CVE-2025-26358 was published Feb 12, 2025
A vulnerability was found in dayrui XunRuiCMS up to 4.6.4. It has been declared as critical. This... Moderate Unreviewed
CVE-2025-1186 was published Feb 12, 2025
Improper input validation in AMD Crash Defender could allow an attacker to provide the Windows®... Moderate Unreviewed
CVE-2024-21971 was published Feb 12, 2025
Windows Kerberos Denial of Service Vulnerability Moderate Unreviewed
CVE-2025-21350 was published Feb 11, 2025
InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by an Improper Input... Moderate Unreviewed
CVE-2025-21126 was published Feb 11, 2025
AMI APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Input... Moderate Unreviewed
CVE-2024-33659 was published Feb 11, 2025
A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected... Moderate Unreviewed
CVE-2025-1177 was published Feb 11, 2025
A vulnerability was found in taisan tarzan-cms up to 1.0.0. It has been rated as critical. This... Moderate Unreviewed
CVE-2025-1113 was published Feb 8, 2025
A vulnerability in a policy-based Cisco Application Visibility and Control (AVC) implementation... Moderate Unreviewed
CVE-2025-20183 was published Feb 5, 2025
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure... Moderate Unreviewed
CVE-2025-20184 was published Feb 5, 2025
Browsershot Local File Inclusion Moderate
CVE-2025-1026 was published for spatie/browsershot (Composer) Feb 5, 2025
Memory corruption while processing frame packets. Moderate Unreviewed
CVE-2024-38413 was published Feb 3, 2025
The Python standard library functions `urllib.parse.urlsplit` and `urlparse` accepted domain... Moderate Unreviewed
CVE-2025-0938 was published Jan 31, 2025
An improper input validation allows an unauthenticated attacker to alter PAM logs by sending a... Moderate Unreviewed
CVE-2025-24501 was published Jan 30, 2025
An improper input validation the CSRF filter results in unsanitized user input written to the... Moderate Unreviewed
CVE-2025-24504 was published Jan 30, 2025
Go Ethereum vulnerable to DoS via malicious p2p message Moderate
CVE-2025-24883 was published for github.com/ethereum/go-ethereum (Go) Jan 30, 2025
A vulnerability has been found in Aridius XYZ up to 20240927 on OpenCart and classified as... Moderate Unreviewed
CVE-2025-0841 was published Jan 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database