Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,478
Erlang
33
GitHub Actions
24
Go
2,208
Maven
5,000+
npm
3,863
NuGet
696
pip
3,640
Pub
12
RubyGems
913
Rust
919
Swift
38
Unreviewed advisories
All unreviewed
5,000+

11,690 advisories

Loading
array-init-cursor is unsound when used with types that implement `Drop` Low
GHSA-67r5-rqwv-9p9q was published for array-init-cursor (Rust) Mar 31, 2025
atop through 2.11.0 allows local users to cause a denial of service (e.g., assertion failure and... Low Unreviewed
CVE-2025-31160 was published Mar 26, 2025
ReDoS based DoS vulnerability in Action Dispatch Low
CVE-2023-22795 was published for actionpack (RubyGems) Jan 18, 2023
robertoz-01 esparta
levpachmanov
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 4.5.5, 4.0.10, and earlier allow... Low Unreviewed
CVE-2013-0203 was published May 5, 2022
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 5.0.x before 5.0.6 allow remote... Low Unreviewed
CVE-2013-2041 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.15, 4.5.x before 4.5... Low Unreviewed
CVE-2013-2042 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.16 and 5.x before 5.0... Low Unreviewed
CVE-2013-2149 was published May 14, 2022
The login page (aka index.php) in ownCloud before 5.0.6 does not disable the autocomplete setting... Low Unreviewed
CVE-2013-2047 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in js/viewer.js in ownCloud before 4.5.12 and... Low Unreviewed
CVE-2013-2150 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.12 and 4.5.x before 4... Low Unreviewed
CVE-2013-0297 was published May 5, 2022
Cross-site scripting (XSS) vulnerability in settings.php in ownCloud before 4.0.12 and 4.5.x... Low Unreviewed
CVE-2013-0307 was published May 5, 2022
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 4.5.x before 4.5.8 allow remote... Low Unreviewed
CVE-2013-1822 was published May 17, 2022
Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.0.13 and 4.5.x before... Low Unreviewed
CVE-2013-1851 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.15, 4.5.x before 4.5... Low Unreviewed
CVE-2013-2040 was published May 17, 2022
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive... Low Unreviewed
CVE-2024-55895 was published Mar 29, 2025
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE ... Low Unreviewed
CVE-2024-21003 was published Apr 17, 2024
This issue was addressed through improved state management. This issue is fixed in watchOS 10.5.... Low Unreviewed
CVE-2024-27814 was published Jun 10, 2024
A logic issue was addressed with improved checks. This issue is fixed in iOS 17.1 and iPadOS 17.1... Low Unreviewed
CVE-2023-42939 was published Feb 21, 2024
The issue was addressed by restricting options offered on a locked device. This issue is fixed in... Low Unreviewed
CVE-2024-27819 was published Jun 10, 2024
There was no limit to the number of HTTP/2 CONTINUATION frames that would be processed. A server... Low Unreviewed
CVE-2024-3302 was published Apr 16, 2024
tough cyclic delegation graphs are not detected Low
GHSA-j8x2-777p-23fc was published for tough (Rust) Mar 28, 2025
MacPaw The Unarchiver before 4.3.6 contains vulnerability related to missing quarantine... Low Unreviewed
CVE-2023-46270 was published Apr 29, 2024
A vulnerability classified as problematic was found in Netis WF-2404 1.1.124EN. Affected by this... Low Unreviewed
CVE-2025-2922 was published Mar 28, 2025
An administrative user of WebReports may perform a Server Side Request Forgery (SSRF) exploit... Low Unreviewed
CVE-2023-45705 was published Mar 28, 2024
In audio, there is a possible out of bounds read due to an incorrect calculation of buffer size.... Low Unreviewed
CVE-2024-20045 was published Apr 1, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database