GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,883
Composer 5,065
Erlang 39
GitHub Actions 38
Go 2,700
Maven 6,139
npm 4,328
NuGet 761
pip 4,100
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,776

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

4,604 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A flaw was found in Undertow that can cause remote denial of service attacks. When the server... High Unreviewed

CVE-2024-3884 was published Dec 3, 2025

Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service (deep... High Unreviewed

CVE-2016-4425 was published May 17, 2022

In the GNU C Library (aka glibc or libc6) through 2.28, attempting to resolve a crafted hostname... High Unreviewed

CVE-2018-19591 was published May 13, 2022

Tuxera NTFS-3G versions < 2021.8.22, when specially crafted NTFS attributes are read in the... High Unreviewed

CVE-2021-33287 was published May 24, 2022

A crafted NTFS image can cause a NULL pointer dereference in ntfs_extent_inode_open in NTFS-3G <... High Unreviewed

CVE-2021-39251 was published May 24, 2022

A crafted NTFS image can cause an out-of-bounds read in ntfs_runlists_merge_i in NTFS-3G < 2021.8... High Unreviewed

CVE-2021-39253 was published May 24, 2022

A crafted NTFS image can cause out-of-bounds reads in ntfs_attr_find and ntfs_external_attr_find... High Unreviewed

CVE-2021-39258 was published May 24, 2022

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_inode_lookup_by_name in NTFS... High Unreviewed

CVE-2021-39256 was published May 24, 2022

A crafted NTFS image can cause an integer overflow in memmove, leading to a heap-based buffer... High Unreviewed

CVE-2021-39254 was published May 24, 2022

A crafted NTFS image can trigger an out-of-bounds read, caused by an invalid attribute in... High Unreviewed

CVE-2021-39255 was published May 24, 2022

A crafted NTFS image can cause an out-of-bounds access in ntfs_inode_sync_standard_information in... High Unreviewed

CVE-2021-39260 was published May 24, 2022

A crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute... High Unreviewed

CVE-2021-39259 was published May 24, 2022

A crafted NTFS image can cause an out-of-bounds read in ntfs_ie_lookup in NTFS-3G < 2021.8.22. High Unreviewed

CVE-2021-39252 was published May 24, 2022

Tuxera NTFS-3G versions < 2021.8.22, when a specially crafted NTFS inode is loaded in the... High Unreviewed

CVE-2021-35268 was published May 24, 2022

A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the... High Unreviewed

CVE-2022-4904 was published Mar 7, 2023

A crafted NTFS image can cause an out-of-bounds access in ntfs_decompress in NTFS-3G < 2021.8.22. High Unreviewed

CVE-2021-39262 was published May 24, 2022

A crafted NTFS image can trigger a heap-based buffer overflow, caused by an unsanitized attribute... High Unreviewed

CVE-2021-39263 was published May 24, 2022

CVE-2025-59595 is an internally discovered denial of service vulnerability in versions of Secure... High Unreviewed

CVE-2025-59595 was published Nov 5, 2025

A buffer overflow vulnerability exists in the Modbus TCP functionality of Socomec DIRIS Digiware... High Unreviewed

CVE-2025-26858 was published Dec 1, 2025

A vulnerability in Automated Logic and Carrier's Zone Controller via BACnet protocol causes the... High Unreviewed

CVE-2025-0658 was published Nov 27, 2025

When packets with a mismatched RTP payload type are sent in WebRTC connections, in some... High Unreviewed

CVE-2018-5130 was published May 14, 2022

A mechanism that uses AppCache to hijack a URL in a domain using fallback by serving the files... High Unreviewed

CVE-2017-7807 was published May 13, 2022

File downloads encoded with "blob:" and "data:" URL elements bypassed normal file download checks... High Unreviewed

CVE-2017-7814 was published May 14, 2022

The destructor function for the "WindowsDllDetourPatcher" class can be re-purposed by malicious... High Unreviewed

CVE-2017-7804 was published May 14, 2022

The "Mark of the Web" was not correctly saved on Windows when files with very long names were... High Unreviewed

CVE-2017-7765 was published May 13, 2022

Previous1…185 Next

Previous 1 2 3 4 5 … 184 185 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,604 advisories