Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,568 advisories

Loading
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds... Low Unreviewed
CVE-2025-20021 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through buffer overflow. Low Unreviewed
CVE-2025-22897 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds... Low Unreviewed
CVE-2025-22841 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through out-of-bounds... Low Unreviewed
CVE-2025-22847 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker cause DOS through NULL pointer... Low Unreviewed
CVE-2025-21097 was published Mar 4, 2025
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre... Low Unreviewed
CVE-2025-0587 was published Mar 4, 2025
tsup DOM Clobbering vulnerability Low
CVE-2024-53384 was published for tsup (npm) Mar 3, 2025
seajs Cross-site Scripting vulnerability Low
CVE-2024-51091 was published for seajs (npm) Mar 3, 2025
Apache Ranger Improper Neutralization of Formula Elements vulnerability Low
CVE-2024-55532 was published for org.apache.ranger:security-admin-web (Maven) Mar 3, 2025
A vulnerability was found in i-Drive i11 and i12 up to 20250227. It has been classified as... Low Unreviewed
CVE-2025-1880 was published Mar 3, 2025
A vulnerability was found in i-Drive i11 and i12 up to 20250227. It has been rated as critical.... Low Unreviewed
CVE-2025-1882 was published Mar 3, 2025
A vulnerability has been found in i-Drive i11 and i12 up to 20250227 and classified as... Low Unreviewed
CVE-2025-1878 was published Mar 3, 2025
Magento LTS vulnerable to stored XSS in theme config fields Low
CVE-2025-27400 was published for openmage/magento-lts (Composer) Mar 3, 2025
justlife4x4
Flask-AppBuilder Observable Response Discrepancy Low
CVE-2025-24023 was published for flask-appbuilder (pip) Mar 3, 2025
A SQL injection vulnerability in the JoomShopping component versions 1.0.0-1.4.3 for Joomla... Low Unreviewed
CVE-2025-22211 was published Feb 26, 2025
IBM Cognos Analytics Mobile 1.1 for Android could allow a user with physical access to the device... Low Unreviewed
CVE-2025-0895 was published Mar 2, 2025
IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer... Low Unreviewed
CVE-2024-55907 was published Mar 2, 2025
Microsoft Access Denial of Service Vulnerability Low Unreviewed
CVE-2023-29333 was published May 9, 2023
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not... Low Unreviewed
CVE-2020-1177 was published May 24, 2022
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not... Low Unreviewed
CVE-2020-1451 was published May 24, 2022
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not... Low Unreviewed
CVE-2020-1297 was published May 24, 2022
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not... Low Unreviewed
CVE-2020-1298 was published May 24, 2022
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not... Low Unreviewed
CVE-2020-1450 was published May 24, 2022
This vulnerability is caused when SharePoint Server does not properly sanitize a specially... Low Unreviewed
CVE-2020-1454 was published May 24, 2022
A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not... Low Unreviewed
CVE-2020-1318 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database