Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,819
Erlang
36
GitHub Actions
32
Go
2,410
Maven
5,000+
npm
4,046
NuGet
723
pip
3,842
Pub
12
RubyGems
933
Rust
1,003
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

37 advisories

Loading
GNU Tar through 1.35 allows file overwrite via directory traversal in crafted TAR archives, with... Moderate Unreviewed
CVE-2025-45582 was published Jul 11, 2025
A vulnerability was found in ZKTeco ZKBio Media 2.0.0_x64_2024-01-29-1028. It has been classified... Moderate Unreviewed
CVE-2024-2318 was published Mar 8, 2024
Personal Weather Station Dashboard 12_lts allows unauthenticated remote attackers to read... Moderate Unreviewed
CVE-2025-47423 was published May 7, 2025
GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to read... Moderate Unreviewed
CVE-2025-43919 was published Apr 20, 2025
In Artifex Ghostscript before 10.05.0, decode_utf8 in base/gp_utf8.c mishandles overlong UTF-8... Moderate Unreviewed
CVE-2025-46646 was published Apr 26, 2025
An arbitrary file upload vulnerability via writefile.php of Serosoft Academia Student Information... Moderate Unreviewed
CVE-2024-53636 was published Apr 26, 2025
In Infodraw Media Relay Service (MRS) 7.1.0.0, the MRS web server (on port 12654) allows reading... Moderate Unreviewed
CVE-2025-43928 was published Apr 20, 2025
A path traversal vulnerability in FusionDirectory before 1.5 allows remote attackers to read... Moderate Unreviewed
CVE-2025-32807 was published Apr 11, 2025
A vulnerability has been found in DedeCMS 5.7.112-UTF8 and classified as problematic. Affected by... Moderate Unreviewed
CVE-2024-3686 was published Apr 12, 2024
A vulnerability classified as problematic has been found in DedeCMS 5.7.114. This affects an... Moderate Unreviewed
CVE-2024-4790 was published May 14, 2024
Ivanti Docs@Work for Android, before 2.26.0 is affected by the 'Dirty Stream' vulnerability. The... Moderate Unreviewed
CVE-2024-37403 was published Aug 7, 2024
A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could... Moderate Unreviewed
CVE-2022-20656 was published Nov 15, 2024
A vulnerability classified as problematic was found in ESAFENET CDG 5. Affected by this... Moderate Unreviewed
CVE-2024-10379 was published Oct 25, 2024
The vulnerability allows an attacker to craft MQTT messages that include relative path traversal... Moderate Unreviewed
CVE-2024-6786 was published Sep 21, 2024
A vulnerability classified as problematic has been found in ABCD ABCD2 up to 2.2.0-beta-1. This... Moderate Unreviewed
CVE-2024-8409 was published Sep 4, 2024
A vulnerability classified as problematic was found in NaiboWang EasySpider 0.6.2 on Windows.... Moderate Unreviewed
CVE-2024-6746 was published Jul 15, 2024
A vulnerability was found in Panwei eoffice OA up to 9.5. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-3227 was published Apr 3, 2024
A vulnerability classified as critical has been found in Shibang Communications IP Network... Moderate Unreviewed
CVE-2024-3218 was published Apr 3, 2024
A vulnerability classified as critical has been found in lakernote EasyAdmin up to 20240315. This... Moderate Unreviewed
CVE-2024-2825 was published Mar 22, 2024
A vulnerability was found in PandaXGO PandaX up to 20240310 and classified as critical. This... Moderate Unreviewed
CVE-2024-2564 was published Mar 17, 2024
A vulnerability has been found in PandaXGO PandaX up to 20240310 and classified as critical. This... Moderate Unreviewed
CVE-2024-2563 was published Mar 17, 2024
A vulnerability classified as critical has been found in KylinSoft youker-assistant on KylinOS.... Moderate Unreviewed
CVE-2023-3098 was published Jun 5, 2023
A vulnerability, which was classified as problematic, has been found in Sichuan Yougou Technology... Moderate Unreviewed
CVE-2024-0989 was published Jan 29, 2024
A vulnerability was found in qwdigital LinkWechat 5.1.0. It has been classified as problematic.... Moderate Unreviewed
CVE-2024-0882 was published Jan 25, 2024
A vulnerability, which was classified as critical, has been found in unknown-o download-station... Moderate Unreviewed
CVE-2024-0354 was published Jan 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database