Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
21
Go
2,094
Maven
5,000+
npm
3,757
NuGet
678
pip
3,444
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

263,419 advisories

Loading
The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24418 was published Jan 22, 2025
The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24419 was published Jan 22, 2025
A reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to... High Unreviewed
CVE-2024-24430 was published Jan 22, 2025
The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24423 was published Jan 22, 2025
The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24417 was published Jan 22, 2025
A Cross Site Request Forgery (CSRF) vulnerability in Code Astro Internet banking system 2.0.0... High Unreviewed
CVE-2024-56924 was published Jan 22, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2025-21503 was published Jan 21, 2025
A type confusion in the nas_message_decode function of Magma <= 1.8.0 (fixed in v1.9 commit... Critical Unreviewed
CVE-2024-24421 was published Jan 22, 2025
A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 ... Moderate Unreviewed
CVE-2023-37028 was published Jan 22, 2025
A reachable assertion in the decode_access_point_name_ie function of Magma <= 1.8.0 (fixed in v1... High Unreviewed
CVE-2024-24424 was published Jan 22, 2025
A reachable assertion in the decode_linked_ti_ie function of Magma <= 1.8.0 (fixed in v1.9 commit... High Unreviewed
CVE-2024-24420 was published Jan 22, 2025
pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2023-27113 was published Jan 22, 2025
In the Linux kernel, the following vulnerability has been resolved: iio: adc: rockchip_saradc:... Unknown Unreviewed
CVE-2024-57907 was published Jan 19, 2025
An access control issue in the component /api/squareComment/DelectSquareById of iceCMS v2.2.0... High Unreviewed
CVE-2025-22984 was published Jan 14, 2025
H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification... Critical Unreviewed
CVE-2024-57482 was published Jan 15, 2025
An issue in the sqlg_group_node component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57664 was published Jan 14, 2025
H3C N12 V100R005 contains a buffer overflow vulnerability due to the lack of length verification... Critical Unreviewed
CVE-2024-57471 was published Jan 15, 2025
In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: rto_min/max:... Unknown Unreviewed
CVE-2025-21639 was published Jan 19, 2025
An access control issue in the component /square/getAllSquare/circle of iceCMS v2.2.0 allows... High Unreviewed
CVE-2025-22983 was published Jan 14, 2025
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix TCP options... Moderate Unreviewed
CVE-2024-57882 was published Jan 15, 2025
WeGIA < 3.2.0 is vulnerable to Cross Site Scripting (XSS) via the dados_addInfo parameter of... Moderate Unreviewed
CVE-2024-57033 was published Jan 17, 2025
In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: udp_port:... Unknown Unreviewed
CVE-2025-21637 was published Jan 19, 2025
An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file... Critical Unreviewed
CVE-2024-48760 was published Jan 15, 2025
Django has a potential denial-of-service vulnerability in IPv6 validation Moderate
CVE-2024-56374 was published for Django (pip) Jan 14, 2025
Cross Site Scripting vulnerability in sunnygkp10 Online Exam System master version allows a... Moderate Unreviewed
CVE-2024-57370 was published Jan 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database