Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
86
GitHub Actions
54
Go
4,169
Maven
5,000+
npm
5,000+
NuGet
1,019
pip
5,000+
Pub
13
RubyGems
1,102
Rust
1,421
Swift
61
Unreviewed advisories
All unreviewed
5,000+

17 advisories

Loading
The MongoDB C Driver's legacy GridFS API accepts malformed file metadata from the database... Moderate Unreviewed
CVE-2026-9100 was published May 20, 2026
uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided Moderate
CVE-2026-41907 was published for uuid (npm) Apr 22, 2026
0xStraw-Hat Credited to 0xStraw-Hat, frattaro, julianladisch, uniabis, c-harding, milenkotomic, jwasnoggin, and mhassan1 frattaro frattaro
julianladisch julianladisch uniabis uniabis c-harding c-harding milenkotomic milenkotomic jwasnoggin jwasnoggin mhassan1 mhassan1
Softros LAN Messenger 9.2 contains a denial of service vulnerability that allows local attackers... Moderate Unreviewed
CVE-2018-25232 was published Mar 30, 2026
Paint Studio 2.17 contains a denial of service vulnerability that allows local attackers to crash... Moderate Unreviewed
CVE-2019-25622 was published Mar 23, 2026
Blob Studio 2.17 contains a denial of service vulnerability that allows local attackers to crash... Moderate Unreviewed
CVE-2019-25625 was published Mar 23, 2026
jetCast Server 2.0 contains a denial of service vulnerability that allows local attackers to... Moderate Unreviewed
CVE-2019-25593 was published Mar 22, 2026
Improper Validation of Specified Index, Position, or Offset in Input vulnerability in Mitsubishi... Moderate Unreviewed
CVE-2025-2399 was published Mar 10, 2026
In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2026-20440 was published Mar 2, 2026
In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead... Moderate Unreviewed
CVE-2026-20413 was published Feb 2, 2026
Improper input validation within AMD uprof can allow a local attacker to write to an arbitrary... Moderate Unreviewed
CVE-2025-48511 was published Nov 24, 2025
Improper input validation within AMD uprof can allow a local attacker to overwrite MSR registers,... Moderate Unreviewed
CVE-2025-48502 was published Nov 21, 2025
The 'zipfile' module would not check the validity of the ZIP64 End of Central Directory (EOCD)... Moderate Unreviewed
CVE-2025-8291 was published Oct 7, 2025
The NVMe driver queue processing is vulernable to guest-induced infinite loops. Moderate Unreviewed
CVE-2024-51566 was published Nov 12, 2024
ASA-2024-002: Default `PrepareProposalHandler` may produce invalid proposals when used with default `SenderNonceMempool` Moderate
GHSA-2557-x9mg-76w8 was published for github.com/cosmos/cosmos-sdk (Go) Feb 21, 2024
KonradStaniec Credited to KonradStaniec, gitferry, SebastianElvis, and vitsalis gitferry gitferry
SebastianElvis SebastianElvis vitsalis vitsalis
An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the... Moderate Unreviewed
CVE-2023-36850 was published Jul 14, 2023
Arbitrary Files can be installed in the Setting Data Import function of Office / Small Office... Moderate Unreviewed
CVE-2023-0859 was published May 11, 2023
A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions).... Moderate Unreviewed
CVE-2022-36363 was published Oct 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database