Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,344
Maven
5,000+
npm
3,973
NuGet
719
pip
3,770
Pub
12
RubyGems
923
Rust
978
Swift
38
Unreviewed advisories
All unreviewed
5,000+

36 advisories

Loading
IBM QRadar Suite Software 1.10.12.0 through 1.11.2.0 and IBM Cloud Pak for Security 1.10.0.0... Moderate Unreviewed
CVE-2025-25020 was published Jun 3, 2025
Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero... Moderate Unreviewed
CVE-2025-40911 was published May 28, 2025
A vulnerability in the bootstrap loading of Cisco IOS XE Software could allow an authenticated,... Moderate Unreviewed
CVE-2025-20155 was published May 7, 2025
Possible DoS by memory exhaustion in net-imap Moderate
CVE-2025-25186 was published for net-imap (RubyGems) Feb 10, 2025
manunio nevans
Mattermost Playbooks fails to properly validate the props used by the RetrospectivePost custom post type Moderate
CVE-2025-41395 was published for github.com/mattermost/mattermost-plugin-playbooks (Go) Apr 24, 2025
HCL BigFix Web Reports might be subject to a Denial of Service (DoS) attack, due to a potentially... Moderate Unreviewed
CVE-2024-42189 was published Apr 15, 2025
51l3nc3, a member of the AXIS OS Bug Bounty Program, has found that the VAPIX API... Moderate Unreviewed
CVE-2024-47261 was published Apr 8, 2025
Insufficient validation of untrusted input in Extensions in Google Chrome prior to 135.0.7049.52... Moderate Unreviewed
CVE-2025-3070 was published Apr 2, 2025
The Net::IPAddress::Util module before 5.000 for Perl does not properly consider extraneous zero... Moderate Unreviewed
CVE-2021-47156 was published Mar 18, 2024
Mattermost Mobile Apps versions <=2.25.0 fail to properly validate GIF images prior to rendering... Moderate Unreviewed
CVE-2025-1558 was published Mar 24, 2025
Keylime registrar is vulnerable to Denial-of-Service attack when updated to version 7.12.0 Moderate
CVE-2025-1057 was published for keylime (pip) Feb 14, 2025
ansasaki
Dzmitry Lukyanenka, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API param... Moderate Unreviewed
CVE-2024-47262 was published Mar 4, 2025
Moxa’s IP Cameras are affected by a medium-severity vulnerability, CVE-2024-9404, which could... Moderate Unreviewed
CVE-2024-9404 was published Dec 4, 2024
Moodle has arbitrary file read risk through pdfTeX Moderate
CVE-2024-43426 was published for moodle/moodle (Composer) Nov 7, 2024
Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management ... Moderate Unreviewed
CVE-2024-8125 was published Feb 5, 2025
Mattermost fails to properly validate post props Moderate
CVE-2025-20088 was published for github.com/mattermost/mattermost/server/v8 (Go) Jan 15, 2025
Mattermost fails to properly validate post props Moderate
CVE-2025-20086 was published for github.com/mattermost/mattermost/server/v8 (Go) Jan 15, 2025
Mattermost webapp crash via a crafted post Moderate
CVE-2025-20621 was published for github.com/mattermost/mattermost/server/v8 (Go) Jan 16, 2025
Mattermost Mobile versions <=2.22.0 fail to properly handle posts with attachments containing... Moderate Unreviewed
CVE-2025-20630 was published Jan 16, 2025
Mattermost Mobile Apps versions <=2.22.0 fail to properly handle specially crafted attachment... Moderate Unreviewed
CVE-2025-0476 was published Jan 16, 2025
Mattermost Mobile Apps versions <=2.22.0 fail to properly validate post props which allows a... Moderate Unreviewed
CVE-2025-20036 was published Jan 15, 2025
Mattermost Mobile Apps versions <=2.22.0 fail to properly validate post props which allows a... Moderate Unreviewed
CVE-2025-21083 was published Jan 15, 2025
Mattermost Improper Validation of Specified Type of Input vulnerability Moderate
CVE-2025-20033 was published for github.com/mattermost/mattermost/server/v8 (Go) Jan 9, 2025
Mattermost Improper Validation of Specified Type of Input vulnerability Moderate
CVE-2024-54083 was published for github.com/mattermost/mattermost/server/v8 (Go) Dec 16, 2024
Kubelet vulnerable to bypass of seccomp profile enforcement Moderate
CVE-2023-2431 was published for k8s.io/kubernetes (Go) Jun 16, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database