GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 26,244
Composer 5,234
Erlang 40
GitHub Actions 41
Go 3,003
Maven 6,264
npm 4,732
NuGet 788
pip 4,341
Pub 12
RubyGems 987
Rust 1,137
Swift 50

Unreviewed advisories

All unreviewed 290,826

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

207 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

mayswind ezbookkeeping versions 1.2.0 and earlier contain a critical vulnerability in JSON and... Moderate Unreviewed

CVE-2025-65519 was published Feb 18, 2026

A Stack Overflow vulnerability was discovered in the TON Virtual Machine (TVM) before v2024.10.... High Unreviewed

CVE-2025-70955 was published Feb 14, 2026

A Denial of Service (DoS) vulnerability was discovered in the TON Lite Server before v2024.09.... High Unreviewed

CVE-2025-70957 was published Feb 14, 2026

MongoDB Server may experience an out-of-memory failure while evaluating expressions that produce... High Unreviewed

CVE-2026-1849 was published Feb 10, 2026

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12... Moderate Unreviewed

CVE-2025-36001 was published Jan 31, 2026

A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability... Moderate Unreviewed

CVE-2026-0990 was published Jan 15, 2026

A flaw was identified in the RelaxNG parser of libxml2 related to how external schema inclusions... Low Unreviewed

CVE-2026-0989 was published Jan 15, 2026

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by... Low Unreviewed

CVE-2025-67899 was published Dec 15, 2025

Uncontrolled recursion in the json2pb component in Apache bRPC (version < 1.15.0) on all... High Unreviewed

CVE-2025-59789 was published Dec 1, 2025

IBM Concert 1.0.0 through 2.0.0 could allow a local user with specific permission to obtain... Moderate Unreviewed

CVE-2025-36158 was published Nov 21, 2025

In Xpdf 4.05 (and earlier), a PDF object loop in a CMap, via the "UseCMap" entry, leads to... Low Unreviewed

CVE-2025-11896 was published Oct 17, 2025

When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured with a JSON content... High Unreviewed

CVE-2025-54858 was published Oct 15, 2025

IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an... Moderate Unreviewed

CVE-2025-33096 was published Oct 12, 2025

In the Linux kernel, the following vulnerability has been resolved: rcu: Avoid stack overflow... Moderate Unreviewed

CVE-2023-53655 was published Oct 7, 2025

When the module renders a Svg file that contains a <pattern> element, it might end up rendering... Critical Unreviewed

CVE-2025-10728 was published Oct 3, 2025

Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply... Moderate Unreviewed

CVE-2025-43718 was published Oct 1, 2025

In the Linux kernel, the following vulnerability has been resolved: nbd: fix incomplete... Moderate Unreviewed

CVE-2023-53513 was published Oct 1, 2025

In the Linux kernel, the following vulnerability has been resolved: powercap: arm_scmi: Remove... Moderate Unreviewed

CVE-2023-53428 was published Sep 18, 2025

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm -... Moderate Unreviewed

CVE-2022-50407 was published Sep 18, 2025

In the Linux kernel, the following vulnerability has been resolved: block: avoid possible... Moderate Unreviewed

CVE-2025-39795 was published Sep 12, 2025

Uncontrolled recursion in XPath evaluation in libxml2 up to and including version 2.9.14 allows a... Moderate Unreviewed

CVE-2025-9714 was published Sep 10, 2025

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix stack... Moderate Unreviewed

CVE-2025-39704 was published Sep 5, 2025

In the Linux kernel, the following vulnerability has been resolved: eventpoll: Fix semi... Moderate Unreviewed

CVE-2025-38614 was published Aug 19, 2025

Uncontrolled recursion for some TinyCBOR libraries maintained by Intel(R) before version 0.6.1... Moderate Unreviewed

CVE-2025-24302 was published Aug 12, 2025

Uncontrolled recursion for some TinyCBOR libraries maintained by Intel(R) before version 0.6.1... Moderate Unreviewed

CVE-2025-20025 was published Aug 12, 2025

Previous1…9 Next

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

207 advisories