GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,668
Composer 5,154
Erlang 40
GitHub Actions 38
Go 2,880
Maven 6,234
npm 4,518
NuGet 784
pip 4,260
Pub 12
RubyGems 975
Rust 1,105
Swift 49

Unreviewed advisories

All unreviewed 287,544

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

287,544 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The net/url package does not set a limit on the number of query parameters in a query. While the... Unknown Unreviewed

CVE-2025-61726 was published Jan 28, 2026

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Login Time Restriction allows Cross... Unknown Unreviewed

CVE-2025-13982 was published Jan 28, 2026

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Acquia Content Hub allows Cross Site... Unknown Unreviewed

CVE-2025-14472 was published Jan 28, 2026

Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal HTTP Client Manager... Unknown Unreviewed

CVE-2025-14840 was published Jan 28, 2026

archive/zip uses a super-linear file name indexing algorithm that is invoked the first time a... Unknown Unreviewed

CVE-2025-61728 was published Jan 28, 2026

A segmentation violation in the flow.column_stack component of OneFlow v0.9.0 allows attackers to... Moderate Unreviewed

CVE-2025-71001 was published Jan 28, 2026

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal CKEditor 5... Moderate Unreviewed

CVE-2025-13980 was published Jan 28, 2026

Privilege Defined With Unsafe Actions vulnerability in Drupal Mini site allows Stored XSS.This... Moderate Unreviewed

CVE-2025-13979 was published Jan 28, 2026

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, does not... Unknown Unreviewed

CVE-2022-40620 was published Jan 28, 2026

FunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, exposes an... Unknown Unreviewed

CVE-2022-40619 was published Jan 28, 2026

Access of Memory Location After End of Buffer vulnerability in TIGERF trustlet prior to SMR Apr... Moderate Unreviewed

CVE-2023-21477 was published Jan 28, 2026

Missing Authorization vulnerability in ThemeMove Makeaholic allows Exploiting Incorrectly... Critical Unreviewed

CVE-2025-58210 was published Jan 28, 2026

Improper authorization in Smart suggestions prior to SMR Apr-2023 Release 1 in Android 13 and 4.1... Moderate Unreviewed

CVE-2023-21479 was published Jan 28, 2026

NVIDIA HD Audio Driver for Windows contains a vulnerability where an attacker could exploit a... Moderate Unreviewed

CVE-2025-33237 was published Jan 28, 2026

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest... High Unreviewed

CVE-2025-33220 was published Jan 28, 2026

Explorance Blue versions prior to 8.14.9 contain an authenticated unrestricted file upload... Critical Unreviewed

CVE-2025-57794 was published Jan 28, 2026

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 26... Moderate Unreviewed

CVE-2025-46316 was published Jan 28, 2026

Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by... Critical Unreviewed

CVE-2025-57792 was published Jan 28, 2026

Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by... High Unreviewed

CVE-2025-57793 was published Jan 28, 2026

Explorance Blue versions prior to 8.14.12 use reversible symmetric encryption with a hardcoded... Moderate Unreviewed

CVE-2025-57796 was published Jan 28, 2026

Explorance Blue versions prior to 8.14.13 contain an authenticated remote file download... Critical Unreviewed

CVE-2025-57795 was published Jan 28, 2026

A GPU device-ID validation flaw in OneFlow v0.9.0 allows attackers to trigger a Denial of Dervice... High Unreviewed

CVE-2025-65891 was published Jan 28, 2026

An issue in the flow.cuda.BoolTensor component of OneFlow v0.9.0 allows attackers to cause a... High Unreviewed

CVE-2025-71000 was published Jan 28, 2026

A GPU device-ID validation flaw in the flow.cuda.get_device_capability() component of OneFlow v0... High Unreviewed

CVE-2025-70999 was published Jan 28, 2026

The issue was addressed with improved bounds checks. This issue is fixed in macOS Tahoe 26,... Moderate Unreviewed

CVE-2025-46306 was published Jan 28, 2026

Previous 1…5…400 Next

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

287,544 advisories