Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,904
Erlang
38
GitHub Actions
38
Go
2,564
Maven
5,000+
npm
4,235
NuGet
752
pip
4,001
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+

12 advisories

Loading
NVIDIA Delegated Licensing Service for all appliance platforms contains a SQL injection... Moderate Unreviewed
CVE-2025-23292 was published Sep 30, 2025
IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to denial of service with a... Moderate Unreviewed
CVE-2025-33114 was published Jul 29, 2025
Improper Neutralization of Special Elements used in an OS Command in bookmarking function of... High Unreviewed
CVE-2017-12904 was published May 13, 2022
WhoDB allows parameter injection in DB connection URIs leading to local file inclusion High
CVE-2025-24787 was published for github.com/clidey/whodb/core (Go) Feb 6, 2025
nnsee modelorona
hkdeman
Credited to nnsee, modelorona, and hkdeman
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could... Moderate Unreviewed
CVE-2021-1481 was published Nov 15, 2024
The product does not validate any query towards persistent data, resulting in a risk of injection... Critical Unreviewed
CVE-2024-4872 was published Aug 27, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to... Moderate Unreviewed
CVE-2024-31882 was published Aug 14, 2024
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) federated server 10.5, 11.1,... Moderate Unreviewed
CVE-2024-35136 was published Aug 14, 2024
An Improper Neutralization of Special Elements in Query vulnerability exists in the 1st Gen.... High Unreviewed
CVE-2018-7829 was published May 24, 2022
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could... Moderate Unreviewed
CVE-2021-34712 was published May 24, 2022
Sort order SQL injection in Administrate High
CVE-2020-5257 was published for administrate (RubyGems) Mar 13, 2020
becojo
Credited to becojo
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could... Moderate Unreviewed
CVE-2021-1349 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database