Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
61
GitHub Actions
50
Go
3,821
Maven
5,000+
npm
5,000+
NuGet
939
pip
5,000+
Pub
13
RubyGems
1,059
Rust
1,357
Swift
54
Unreviewed advisories
All unreviewed
5,000+

5 advisories

Loading
runc vulnerable to container breakout through process.cwd trickery and leaked fds High
CVE-2024-21626 was published for github.com/opencontainers/runc (Go) Jan 31, 2024
rmcnamara-snyk Credited to rmcnamara-snyk, cyphar, and lifubang cyphar cyphar
lifubang lifubang
Leaking of file descriptors from the fork server to web content processes could allow for... High Unreviewed
CVE-2025-3032 was published Apr 1, 2025
CMSimple 5.15 contains a remote command execution vulnerability that allows authenticated... High Unreviewed
CVE-2024-58280 was published Dec 11, 2025
Ksenia Security Lares 4.0 Home Automation version 1.6 contains a critical security flaw that... Critical Unreviewed
CVE-2025-15114 was published Dec 31, 2025
Pachno 1.0.6 contains an XML external entity injection vulnerability that allows unauthenticated... Critical Unreviewed
CVE-2026-40042 was published Apr 13, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database