GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,934
Composer 4,780
Erlang 36
GitHub Actions 29
Go 2,344
Maven 5,665
npm 3,973
NuGet 719
pip 3,770
Pub 12
RubyGems 923
Rust 978
Swift 38

Unreviewed advisories

All unreviewed 260,064

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

65 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Inappropriate implementation in Downloads in Google Chrome prior to 121.0.6167.85 allowed a... Moderate Unreviewed

CVE-2024-0805 was published Jan 24, 2024

A crafted HTML email using mailbox:/// links can trigger automatic, unsolicited downloads of .pdf... Moderate Unreviewed

CVE-2025-5986 was published Jun 11, 2025

Inappropriate implementation in Messages in Google Chrome on Android prior to 137.0.7151.55... Moderate Unreviewed

CVE-2025-5066 was published May 27, 2025

Inappropriate implementation in FileSystemAccess API in Google Chrome prior to 137.0.7151.55... Moderate Unreviewed

CVE-2025-5065 was published May 27, 2025

The issue was addressed with improved UI handling. This issue is fixed in watchOS 8.7, tvOS 15.6,... Moderate Unreviewed

CVE-2022-32816 was published Sep 25, 2022

Websites directing users to long URLs that caused eliding to occur in the location view could... Moderate Unreviewed

CVE-2025-3859 was published Apr 30, 2025

Incorrect security UI in full screen in Google Chrome prior to 106.0.5249.62 allowed a remote... Moderate Unreviewed

CVE-2022-3313 was published Nov 2, 2022

User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based)... Moderate Unreviewed

CVE-2025-29825 was published May 2, 2025

A specially crafted filename containing a large number of encoded newline characters could... Moderate Unreviewed

CVE-2025-4086 was published Apr 29, 2025

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from... Moderate Unreviewed

CVE-2016-9468 was published May 13, 2022

Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from... Moderate Unreviewed

CVE-2016-9467 was published May 13, 2022

Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Content-Spoofing vulnerability in the ... Moderate Unreviewed

CVE-2017-0888 was published May 17, 2022

Brave Browser iOS before 1.2.18 and Brave Browser Android 1.9.56 and earlier suffer from Full... Moderate Unreviewed

CVE-2016-9473 was published May 13, 2022

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a content... Moderate Unreviewed

CVE-2016-9460 was published May 17, 2022

In strings.xml, there is a possible permission bypass due to a misleading string. This could lead... Moderate Unreviewed

CVE-2022-20530 was published Dec 20, 2022

Under certain circumstances, a JavaScript alert (or prompt) could have been shown while another... Moderate Unreviewed

CVE-2022-22762 was published Dec 22, 2022

When resizing a popup after requesting fullscreen access, the popup would not display the... Moderate Unreviewed

CVE-2022-26383 was published Dec 22, 2022

A malicious website that could create a popup could have resized the popup to overlay the address... Moderate Unreviewed

CVE-2022-34479 was published Dec 22, 2022

When an email contains multiple attachments with external links via the X-Mozilla-External... Moderate Unreviewed

CVE-2025-3523 was published Apr 15, 2025

Through a series of popup and <code>window.print()</code> calls, an attacker can cause a window... Moderate Unreviewed

CVE-2022-45404 was published Dec 22, 2022

Inappropriate implementation in Downloads in Google Chrome prior to 135.0.7049.52 allowed a... Moderate Unreviewed

CVE-2025-3074 was published Apr 2, 2025

Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a... Moderate Unreviewed

CVE-2025-3072 was published Apr 2, 2025

Inappropriate implementation in Autofill in Google Chrome prior to 135.0.7049.52 allowed a remote... Moderate Unreviewed

CVE-2025-3073 was published Apr 2, 2025

User interface (ui) misrepresentation of critical information in Microsoft Edge for iOS allows an... Moderate Unreviewed

CVE-2025-29796 was published Apr 4, 2025

The issue was addressed with improved checks. This issue is fixed in Safari 18.4, iOS 18.4 and... Moderate Unreviewed

CVE-2025-30467 was published Apr 1, 2025

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

65 advisories