Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,815
Erlang
36
GitHub Actions
32
Go
2,401
Maven
5,000+
npm
4,045
NuGet
723
pip
3,842
Pub
12
RubyGems
933
Rust
1,003
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,883 advisories

Loading
MaterialX Lack of MTLX Import Depth Limit Leads to DoS (Denial-Of-Service) Via Stack Exhaustion Moderate
CVE-2025-53012 was published for MaterialX (pip) Jul 31, 2025
suidpit ndaprela
TheZ3ro smaury
SixLabors ImageSharp Has Infinite Loop in GIF Decoder When Skipping Malformed Comment Extension Blocks Moderate
CVE-2025-54575 was published for SixLabors.ImageSharp (NuGet) Jul 30, 2025
whatevicanhaz
Ruby SAML DOS vulnerability with large SAML response Moderate
CVE-2025-54572 was published for ruby-saml (RubyGems) Jul 30, 2025
dblessing
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6.... Moderate Unreviewed
CVE-2025-43235 was published Jul 30, 2025
The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.6,... Critical Unreviewed
CVE-2025-43193 was published Jul 30, 2025
NanoMQ v0.17.9 was discovered to contain a heap use-after-free vulnerability via the component... High Unreviewed
CVE-2024-42651 was published Jul 29, 2025
A vulnerability was found in yarnpkg Yarn up to 1.22.22. It has been classified as problematic.... Moderate Unreviewed
CVE-2025-8262 was published Jul 28, 2025
A vulnerability was found in prettier up to 3.6.2. It has been declared as problematic. Affected... Moderate Unreviewed
CVE-2025-8263 was published Jul 28, 2025
vBulletin 3.8.7 is vulnerable to a denial-of-service condition via the misc.php?do=buddylist... Moderate Unreviewed
CVE-2025-46171 was published Jul 23, 2025
In H3C GR2200 MiniGR1A0V100R016, the USERLIMIT_GLOBAL option is set to 0 in the /etc/bftpd.conf.... High Unreviewed
CVE-2025-44653 was published Jul 21, 2025
In TRENDnet TPL-430AP FW1.0, the USERLIMIT_GLOBAL option is set to 0 in the bftpd-related... High Unreviewed
CVE-2025-44651 was published Jul 21, 2025
In Netgear R7000 V1.3.1.64_10.1.36 and EAX80 V1.0.1.70_1.0.2, the USERLIMIT_GLOBAL option is set... High Unreviewed
CVE-2025-44650 was published Jul 21, 2025
A high privileged remote attacker can exhaust critical system resources by sending specifically... Moderate Unreviewed
CVE-2025-41676 was published Jul 21, 2025
A high privileged remote attacker can exhaust critical system resources by sending specifically... Moderate Unreviewed
CVE-2025-41677 was published Jul 21, 2025
A DOS vulnerability in RSFiles! component 1.16.3-1.17.7 Joomla was discovered. The issue allows... Moderate Unreviewed
CVE-2025-50057 was published Jul 18, 2025
File Browser's Uncontrolled Memory Consumption vulnerability can enable DoS attack due to oversized file processing High
CVE-2025-53893 was published for github.com/filebrowser/filebrowser/v2 (Go) Jul 16, 2025
maen08 hacdias
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). ... Moderate Unreviewed
CVE-2025-53023 was published Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported... Low Unreviewed
CVE-2025-50104 was published Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth... Moderate Unreviewed
CVE-2025-50103 was published Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2025-50102 was published Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2025-50089 was published Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2025-50095 was published Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2025-50096 was published Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2025-50092 was published Jul 15, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2025-50091 was published Jul 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database