Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
47
GitHub Actions
48
Go
3,377
Maven
5,000+
npm
5,000+
NuGet
881
pip
4,573
Pub
13
RubyGems
1,013
Rust
1,205
Swift
51
Unreviewed advisories
All unreviewed
5,000+

33 advisories

Loading
Apache Cocoon vulnerable to Incorrect Usage of Seeds in Pseudo-Random Number Generator Low
CVE-2025-24783 was published for org.apache.cocoon:cocoon-forms-impl (Maven) Jan 27, 2025
An issue in GNU Savane v.3.12 and before allows a remote attacker to escalate privileges via the... High Unreviewed
CVE-2024-27632 was published Apr 9, 2024
An issue was discovered on the D-Link DWR-932B router. WPS PIN generation is based on srand(time... High Unreviewed
CVE-2016-10180 was published May 13, 2022
NIH BRICS (aka Biomedical Research Informatics Computing System) through 14.0.0-67 generates... High Unreviewed
CVE-2025-27580 was published Apr 24, 2025
D-Link COVR 1200,1202,1203 v1.08 was discovered to have a predictable seed in a Pseudo-Random... Moderate Unreviewed
CVE-2022-42159 was published Oct 14, 2022
QAbstractOAuth in Qt Network Authorization in Qt before 5.15.17, 6.x before 6.2.13, 6.3.x through... Critical Unreviewed
CVE-2024-36048 was published May 18, 2024
Incorrect Usage of Seeds in Pseudo-Random Number Generator (CWE- 335) vulnerability in the High... Moderate Unreviewed
CVE-2025-52578 was published Nov 18, 2025
Protection mechanism failure in wolfCrypt post-quantum implementations (ML-KEM and ML-DSA) in... Moderate Unreviewed
CVE-2026-3503 was published Mar 19, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database