Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
43
Go
3,181
Maven
5,000+
npm
5,000+
NuGet
863
pip
4,474
Pub
12
RubyGems
991
Rust
1,185
Swift
51
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

397 advisories

Loading
HMS Networks Ewon Flexy with firmware before 15.0s4, Cosy+ with firmware 22.xx before 22.1s6, and... Critical Unreviewed
CVE-2026-25823 was published Mar 13, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70245 was published Mar 12, 2026
EHG2408 series switch developed by Atop Technologies has a Stack-based Buffer Overflow... Critical Unreviewed
CVE-2026-3823 was published Mar 9, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70233 was published Mar 5, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70230 was published Mar 5, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70232 was published Mar 5, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70229 was published Mar 5, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70222 was published Mar 5, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curtime parameter to the... Critical Unreviewed
CVE-2025-70225 was published Mar 4, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70221 was published Mar 4, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70226 was published Mar 4, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the goform/formDeviceReboot. Critical Unreviewed
CVE-2025-70219 was published Mar 4, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70223 was published Mar 4, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via POST to the goform... Critical Unreviewed
CVE-2025-70218 was published Mar 4, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70220 was published Mar 4, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70234 was published Mar 3, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70240 was published Mar 3, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70237 was published Mar 3, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70241 was published Mar 3, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70239 was published Mar 3, 2026
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform... Critical Unreviewed
CVE-2025-70236 was published Mar 3, 2026
MailCarrier 2.51 contains a buffer overflow vulnerability in the POP3 USER command that allows... Critical Unreviewed
CVE-2019-25364 was published Feb 19, 2026
An unauthenticated stack-based buffer overflow vulnerability exists in the HTTP API endpoint /cgi... Critical Unreviewed
CVE-2026-2329 was published Feb 18, 2026
The Infotainment ECU manufactured by Bosch uses a RH850 module for CAN communication. RH850 is... Critical Unreviewed
CVE-2025-32058 was published Feb 15, 2026
An issue was discovered in OpenSatKit 2.2.1. The EventErrStr buffer has a fixed size of 256 bytes... Critical Unreviewed
CVE-2025-70085 was published Feb 11, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database