Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,419
Maven
5,000+
npm
4,055
NuGet
723
pip
3,847
Pub
12
RubyGems
934
Rust
1,006
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,886 advisories

Loading
A vulnerability was found in prettier up to 3.6.2. It has been declared as problematic. Affected... Moderate Unreviewed
CVE-2025-8263 was published Jul 28, 2025
A vulnerability was found in yarnpkg Yarn up to 1.22.22. It has been classified as problematic.... Moderate Unreviewed
CVE-2025-8262 was published Jul 28, 2025
NanoMQ v0.17.9 was discovered to contain a heap use-after-free vulnerability via the component... High Unreviewed
CVE-2024-42651 was published Jul 29, 2025
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6,... Critical Unreviewed
CVE-2025-43193 was published Jul 30, 2025
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6.... Moderate Unreviewed
CVE-2025-43235 was published Jul 30, 2025
Ruby SAML DOS vulnerability with large SAML response Moderate
CVE-2025-54572 was published for ruby-saml (RubyGems) Jul 30, 2025
dblessing
SixLabors ImageSharp Has Infinite Loop in GIF Decoder When Skipping Malformed Comment Extension Blocks Moderate
CVE-2025-54575 was published for SixLabors.ImageSharp (NuGet) Jul 30, 2025
whatevicanhaz
MaterialX Lack of MTLX Import Depth Limit Leads to DoS (Denial-Of-Service) Via Stack Exhaustion Moderate
CVE-2025-53012 was published for MaterialX (pip) Jul 31, 2025
suidpit ndaprela
TheZ3ro smaury
An issue in Artifex mupdf 1.25.6, 1.25.5 allows a remote attacker to cause a denial of service... High Unreviewed
CVE-2025-46206 was published Aug 4, 2025
An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an... High Unreviewed
CVE-2025-50420 was published Aug 4, 2025
A vulnerability, which was classified as problematic, was found in Axiomatic Bento4 up to 1.6.0... Moderate Unreviewed
CVE-2025-8537 was published Aug 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database