Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,670
Maven
5,000+
npm
4,296
NuGet
760
pip
4,075
Pub
12
RubyGems
957
Rust
1,058
Swift
45
Unreviewed advisories
All unreviewed
5,000+

10 advisories

Loading
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local... High Unreviewed
CVE-2022-20775 was published Oct 1, 2022
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local... High Unreviewed
CVE-2022-20818 was published Oct 1, 2022
: Path Traversal: '/../filedir' vulnerability in Neutron IP Camera allows Absolute Path Traversal... High Unreviewed
CVE-2023-6118 was published Nov 23, 2023
Path Traversal: '/../filedir' vulnerability in Biges Safe Life Technologies Electronics Inc.... High Unreviewed
CVE-2023-6919 was published Jan 26, 2024
Franklin Fueling System EVO 550 and EVO 5000 are vulnerable to a Path Traversal vulnerability... High Unreviewed
CVE-2024-2442 was published Mar 19, 2024
The Best WordPress Gallery Plugin – FooGallery plugin for WordPress is vulnerable to Directory... High Unreviewed
CVE-2023-6947 was published Dec 10, 2024
rage vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution Moderate
GHSA-4fg7-vxc8-qx5w was published for age (Rust) Dec 18, 2024
age vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution Moderate
GHSA-32gq-x56h-299c was published for filippo.io/age (Go) Dec 18, 2024
pyrage vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution High
CVE-2024-56327 was published for pyrage (pip) Dec 19, 2024
gaby woodruffw
Credited to gaby and woodruffw
Denial of service (DoS) vulnerability in the office service. Successful exploitation of this... Low Unreviewed
CVE-2025-58286 was published Oct 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database