Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,330
Erlang
31
GitHub Actions
21
Go
2,091
Maven
5,000+
npm
3,756
NuGet
678
pip
3,443
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

19 advisories

Loading
Windows SmartScreen Spoofing Vulnerability Moderate Unreviewed
CVE-2025-21314 was published Jan 14, 2025
IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content... Moderate Unreviewed
CVE-2024-55896 was published Jan 4, 2025
thorsten/phpmyfaq Unintended File Download Triggered by Embedded Frames Moderate
CVE-2024-55889 was published for thorsten/phpmyfaq (Composer) Dec 13, 2024
geo-chen
Multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST... Moderate Unreviewed
CVE-2024-47044 was published Sep 26, 2024
Dell E-Lab Navigator, [3.1.9, 3.2.0], contains an Insecure Direct Object Reference Vulnerability... Moderate Unreviewed
CVE-2024-22455 was published Oct 16, 2024
Inappropriate implementation in Navigation in Google Chrome prior to 113.0.5672.63 allowed a... Moderate Unreviewed
CVE-2023-7282 was published Sep 24, 2024
Inappropriate implementation in Autofill in Google Chrome prior to 124.0.6367.60 allowed a remote... Moderate Unreviewed
CVE-2024-7020 was published Sep 24, 2024
Inappropriate implementation in Compositing in Google Chrome prior to 119.0.6045.105 allowed a... Moderate Unreviewed
CVE-2023-7281 was published Sep 24, 2024
Inappropriate implementation in UI in Google Chrome prior to 124.0.6367.60 allowed a remote... Moderate Unreviewed
CVE-2024-7019 was published Sep 24, 2024
Microsoft Teams for iOS Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38197 was published Aug 13, 2024
Inappropriate implementation in Picture in Picture in Google Chrome prior to 119.0.6045.105... Moderate Unreviewed
CVE-2023-7011 was published Jul 17, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38093 was published Jun 20, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2024-38082 was published Jun 20, 2024
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2024-30055 was published May 14, 2024
IBM PowerSC 1.3, 2.0, and 2.1 could allow a remote attacker to hijack the clicking action of the... Moderate Unreviewed
CVE-2023-50938 was published Feb 2, 2024
A flaw was found in Quay. Clickjacking is when an attacker uses multiple transparent or opaque... Moderate Unreviewed
CVE-2023-4956 was published Nov 7, 2023
An attacker could trick a user of Hitachi ABB Power Grids Ellipse Enterprise Asset Management ... Moderate Unreviewed
CVE-2021-27414 was published Mar 12, 2022
Improper CSP in Image Optimization API for Next.js versions between 10.0.0 and 12.1.0 Moderate
CVE-2022-23646 was published for next (npm) Feb 17, 2022
A vulnerability, which was classified as problematic, has been found in SourceCodester Gym... Moderate Unreviewed
CVE-2022-2800 was published Aug 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database