Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
86
GitHub Actions
54
Go
4,169
Maven
5,000+
npm
5,000+
NuGet
1,019
pip
5,000+
Pub
13
RubyGems
1,102
Rust
1,421
Swift
61
Unreviewed advisories
All unreviewed
5,000+

129,431 advisories

Loading
Simple Job Script contains an SQL injection vulnerability that allows unauthenticated attackers... High Unreviewed
CVE-2019-25500 was published Mar 4, 2026
Tradebox 5.4 contains an SQL injection vulnerability that allows authenticated attackers to... High Unreviewed
CVE-2019-25505 was published Mar 4, 2026
Simple Job Script contains an SQL injection vulnerability that allows unauthenticated attackers... High Unreviewed
CVE-2019-25499 was published Mar 4, 2026
A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an... High Unreviewed
CVE-2026-20002 was published Mar 4, 2026
A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA)... High Unreviewed
CVE-2026-20039 was published Mar 4, 2026
A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD... High Unreviewed
CVE-2026-20014 was published Mar 4, 2026
FreeSMS 2.1.2 contains a boolean-based blind SQL injection vulnerability in the password... High Unreviewed
CVE-2019-25506 was published Mar 4, 2026
Ashop Shopping Cart Software contains an SQL injection vulnerability that allows unauthenticated... High Unreviewed
CVE-2019-25507 was published Mar 4, 2026
NCrypted Jobgator contains an SQL injection vulnerability that allows unauthenticated attackers... High Unreviewed
CVE-2019-25504 was published Mar 4, 2026
PHPads 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to... High Unreviewed
CVE-2019-25503 was published Mar 4, 2026
Simple Job Script contains an SQL injection vulnerability that allows unauthenticated attackers... High Unreviewed
CVE-2019-25498 was published Mar 4, 2026
An issue in DJI Mavic Mini, Spark, Mavic Air, Mini, Mini SE 0.1.00.0500 and below allows a remote... High Unreviewed
CVE-2026-26673 was published Mar 4, 2026
An Argument Injection vulnerability exists in bird-lg-go before commit 6187a4e. The traceroute... High Unreviewed
CVE-2026-26514 was published Mar 4, 2026
API endpoint for user synchronization in 2N Access Commander version 3.4.1 did not have a... High Unreviewed
CVE-2025-59783 was published Mar 4, 2026
Traefik: tcp router clears read deadlines before tls forwarding, enabling stalled handshakes (Slowloris DOS) High
CVE-2026-26999 was published for github.com/traefik/traefik/v2 (Go) Mar 4, 2026
1seal Credited to 1seal
XWiki Blog Application home page vulnerable to Stored XSS via Post Title High
CVE-2025-66024 was published for org.xwiki.contrib.blog:application-blog-ui (Maven) Mar 4, 2026
lukasz-rybak Credited to lukasz-rybak
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds... High Unreviewed
CVE-2026-23235 was published Mar 4, 2026
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in... High Unreviewed
CVE-2026-23234 was published Mar 4, 2026
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping... High Unreviewed
CVE-2026-23233 was published Mar 4, 2026
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix bsg_done(... High Unreviewed
CVE-2025-71238 was published Mar 4, 2026
Insecure permissions in App-Auto-Patch v3.4.2 create a race condition which allows attackers to... High Unreviewed
CVE-2025-70341 was published Mar 4, 2026
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix... High Unreviewed
CVE-2026-23231 was published Mar 4, 2026
The JS Help Desk – AI-Powered Support & Ticketing System plugin for WordPress is vulnerable to... High Unreviewed
CVE-2023-7337 was published Mar 4, 2026
Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a... High Unreviewed
CVE-2026-3094 was published Mar 4, 2026
International Datacasting Corporation (IDC) SFX Series SuperFlex(SFX2100) SatelliteReceiver... High Unreviewed
CVE-2026-29119 was published Mar 4, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database