Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,662
Maven
5,000+
npm
4,291
NuGet
760
pip
4,070
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11 advisories

Loading
Apache Syncope allows malicious administrators to inject Groovy code High
CVE-2025-57738 was published for org.apache.syncope.core:syncope-core-spring (Maven) Oct 20, 2025
Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA and SaaS... High Unreviewed
CVE-2025-34201 was published Sep 19, 2025
Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel(R)... High Unreviewed
CVE-2025-20109 was published Aug 12, 2025
A high privileged remote attacker can execute arbitrary OS commands using an undocumented method... High Unreviewed
CVE-2025-41688 was published Jul 31, 2025
On open-vsx.org http://open-vsx.org/  it was possible to run an arbitrary build scripts for auto... High Unreviewed
CVE-2025-6705 was published Jun 27, 2025
NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted... High Unreviewed
CVE-2024-0136 was published Jan 28, 2025
NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted... High Unreviewed
CVE-2024-0135 was published Jan 28, 2025
A user with advanced report application access rights can perform actions for which they are not... High Unreviewed
CVE-2024-47520 was published Jan 11, 2025
Improper authorization in global search in GitLab EE affecting all versions from 16.11 prior to... High Unreviewed
CVE-2024-6323 was published Jun 27, 2024
An authenticated attacker can leverage an exposed “box” object to read and write arbitrary files... High Unreviewed
CVE-2023-1305 was published Jul 6, 2023
Class Loading Vulnerability in Artemis High
GHSA-227w-wv4j-67h4 was published for de.tum.in.ase:artemis-java-test-sandbox (Maven) Feb 9, 2022
juliuskreutz
Credited to juliuskreutz
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database