Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

99,955 advisories

Loading
Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server... High Unreviewed
CVE-2024-6119 was published Sep 3, 2024
A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop... High Unreviewed
CVE-2024-52561 was published Jun 3, 2025
A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop... High Unreviewed
CVE-2024-54189 was published Jun 3, 2025
The Shared Files – Frontend File Upload Form & Secure File Sharing plugin for WordPress is... High Unreviewed
CVE-2025-4392 was published Jun 3, 2025
A directory traversal vulnerability exists in the PVMP package unpacking functionality of... High Unreviewed
CVE-2025-31359 was published Jun 3, 2025
A privilege escalation vulnerability exists in the virtual machine archive restoration... High Unreviewed
CVE-2024-36486 was published Jun 3, 2025
Memory corruption due to unauthorized command execution in GPU micronode while executing specific... High Unreviewed
CVE-2025-21479 was published Jun 3, 2025
Incorrect default permissions issue in PC Time Tracer prior to 5.2. If exploited, arbitrary code... High Unreviewed
CVE-2025-46355 was published Jun 3, 2025
Information disclosure may occur while processing goodbye RTCP packet from network. High Unreviewed
CVE-2024-53021 was published Jun 3, 2025
Memory corruption due to unauthorized command execution in GPU micronode while executing specific... High Unreviewed
CVE-2025-21480 was published Jun 3, 2025
Memory corruption may occur while attaching VM when the HLOS retains access to VM. High Unreviewed
CVE-2024-53010 was published Jun 3, 2025
Information disclosure may occur while decoding the RTP packet with improper header length for... High Unreviewed
CVE-2024-53019 was published Jun 3, 2025
Memory corruption while processing INIT and multimode invoke IOCTL calls on FastRPC. High Unreviewed
CVE-2025-21485 was published Jun 3, 2025
Information disclosure when an invalid RTCP packet is received during a VoLTE/VoWiFi IMS call. High Unreviewed
CVE-2024-53026 was published Jun 3, 2025
Information disclosure may occur while decoding the RTP packet with invalid header extension from... High Unreviewed
CVE-2024-53020 was published Jun 3, 2025
memory corruption while processing IOCTL commands, when the buffer in write loopback mode is... High Unreviewed
CVE-2025-27031 was published Jun 3, 2025
Memory corruption during dynamic process creation call when client is only passing address and... High Unreviewed
CVE-2025-21486 was published Jun 3, 2025
Transient DOS while processing the tone measurement response buffer when the response buffer is... High Unreviewed
CVE-2025-27029 was published Jun 3, 2025
Memory corruption while rendering graphics using Adreno GPU drivers in Chrome. High Unreviewed
CVE-2025-27038 was published Jun 3, 2025
Transient DOS while processing the EHT operation IE in the received beacon frame. High Unreviewed
CVE-2025-21463 was published Jun 3, 2025
Out of bounds read and write in V8 in Google Chrome prior to 137.0.7151.68 allowed a remote... High Unreviewed
CVE-2025-5419 was published Jun 3, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free... High Unreviewed
CVE-2025-23105 was published Jun 2, 2025
SEMCMS 3.9 is vulnerable to SQL Injection. Due to the lack of security checks on the input of the... High Unreviewed
CVE-2023-48863 was published Dec 4, 2023
The wpForo + wpForo Advanced Attachments plugin for WordPress is vulnerable to Stored Cross-Site... High Unreviewed
CVE-2025-4224 was published Jun 3, 2025
Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to... High Unreviewed
CVE-2025-5068 was published Jun 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database