GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,387
Composer 4,669
Erlang 34
GitHub Actions 26
Go 2,262
Maven 5,521
npm 3,912
NuGet 705
pip 3,681
Pub 12
RubyGems 916
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,459

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

98,943 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with... High Unreviewed

CVE-2022-40303 was published Nov 23, 2022

A memory corruption vulnerability in the Unauthorized Change Prevention service of Trend Micro... High Unreviewed

CVE-2022-44650 was published Dec 12, 2022

Affected builds of Trend Micro Apex One and Apex One as a Service contain a monitor engine... High Unreviewed

CVE-2022-44654 was published Dec 12, 2022

An out-of-bounds access vulnerability in the Unauthorized Change Prevention service of Trend... High Unreviewed

CVE-2022-44649 was published Dec 12, 2022

A potential security vulnerability has been identified in certain HP Workstation BIOS (UEFI... High Unreviewed

CVE-2021-3661 was published Dec 12, 2022

A potential vulnerability has been identified in the system BIOS for certain HP PC products which... High Unreviewed

CVE-2022-37018 was published Dec 12, 2022

A potential security vulnerability has been identified in the HP Jumpstart software, which might... High Unreviewed

CVE-2022-1038 was published Dec 12, 2022

CartView.php in ChurchInfo 1.3.0 allows attackers to achieve remote code execution through... High Unreviewed

CVE-2021-43258 was published Nov 23, 2022

An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can... High Unreviewed

CVE-2022-40304 was published Nov 23, 2022

GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name... High Unreviewed

CVE-2022-45939 was published Nov 28, 2022

A Time-of-Check Time-Of-Use vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed

CVE-2022-44651 was published Dec 12, 2022

A vulnerability in the update process of Docker Desktop for Windows versions prior to 4.41.0... High Unreviewed

CVE-2025-3224 was published Apr 28, 2025

GFI MailEssentials prior to version 21.8 is vulnerable to a .NET deserialization issue. A remote... High Unreviewed

CVE-2025-34491 was published Apr 28, 2025

GFI MailEssentials prior to version 21.8 is vulnerable to a local privilege escalation issue. A... High Unreviewed

CVE-2025-34489 was published Apr 28, 2025

In the Linux kernel, the following vulnerability has been resolved: objtool, nvmet: Fix out-of... High Unreviewed

CVE-2025-39778 was published Apr 18, 2025

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer... High Unreviewed

CVE-2025-24453 was published Mar 11, 2025

A security agent directory traversal vulnerability in Trend Micro Apex One and Apex One as a... High Unreviewed

CVE-2022-44653 was published Dec 12, 2022

The WP User Merger WordPress plugin before 1.5.3 does not properly sanitise and escape a... High Unreviewed

CVE-2022-3849 was published Nov 28, 2022

An improper handling of exceptional conditions vulnerability in Trend Micro Apex One and Apex One... High Unreviewed

CVE-2022-44652 was published Dec 12, 2022

The TheCartPress boot-store (aka Boot Store) theme 1.6.4 for WordPress allows header.php... High Unreviewed

CVE-2015-4582 was published Apr 28, 2025

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by a Heap-based Buffer... High Unreviewed

CVE-2025-27171 was published Mar 11, 2025

Substance3D - Designer versions 14.1 and earlier are affected by a Heap-based Buffer Overflow... High Unreviewed

CVE-2025-21169 was published Mar 11, 2025

In the Linux kernel, the following vulnerability has been resolved: jfs: fix slab-out-of-bounds... High Unreviewed

CVE-2025-39735 was published Apr 18, 2025

CRITICAL: An improper neutralization of argument delimiters in a command vulnerability was... High Unreviewed

CVE-2022-23740 was published Nov 23, 2022

Dell PowerProtect Data Manager Reporting, version(s) 19.17, contain(s) an Incorrect Use of... High Unreviewed

CVE-2025-23375 was published Apr 28, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

98,943 advisories