Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
41
GitHub Actions
41
Go
3,098
Maven
5,000+
npm
4,985
NuGet
826
pip
4,425
Pub
12
RubyGems
988
Rust
1,170
Swift
50
Unreviewed advisories
All unreviewed
5,000+

218 advisories

Loading
Improper Validation of Specified Quantity in Input vulnerability in BoldGrid W3 Total Cache w3... Unknown Unreviewed
CVE-2026-27384 was published Mar 5, 2026
Improper Validation of Specified Quantity in Input (CWE-1284) in Kibana can allow an... Moderate Unreviewed
CVE-2026-26934 was published Feb 26, 2026
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.2 before 18.7.5, 18... High Unreviewed
CVE-2025-14511 was published Feb 25, 2026
zlib before 1.3.2 allows CPU consumption via crc32_combine64 and crc32_combine_gen64 because... Low Unreviewed
CVE-2026-27171 was published Feb 18, 2026
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 12.1.0 through 12.1.3 could... Moderate Unreviewed
CVE-2025-14689 was published Feb 17, 2026
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 through 11.5.9 and 12.1... Moderate Unreviewed
CVE-2025-13867 was published Feb 17, 2026
Improper bound check within AMD CPU microcode can allow a malicious guest to write to host memory... Moderate Unreviewed
CVE-2025-52534 was published Feb 10, 2026
Improper input validation in IOMMU could allow a malicious hypervisor to reconfigure IOMMU... Moderate Unreviewed
CVE-2024-21953 was published Feb 10, 2026
Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric MELSEC iQ... High Unreviewed
CVE-2025-15080 was published Feb 5, 2026
IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0... Moderate Unreviewed
CVE-2025-36094 was published Feb 4, 2026
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12... Moderate Unreviewed
CVE-2025-36407 was published Jan 31, 2026
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12... Moderate Unreviewed
CVE-2025-36424 was published Jan 31, 2026
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 12.1.0 - 12.1.3 could allow a... Moderate Unreviewed
CVE-2025-36423 was published Jan 31, 2026
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12... Moderate Unreviewed
CVE-2025-36428 was published Jan 31, 2026
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12... Moderate Unreviewed
CVE-2025-36427 was published Jan 31, 2026
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12... Moderate Unreviewed
CVE-2025-36009 was published Jan 31, 2026
Tanium addressed an improper input validation vulnerability in Discover. Low Unreviewed
CVE-2026-0925 was published Jan 26, 2026
A denial-of-service security issue in the affected product. The security issue occurs when a... High Unreviewed
CVE-2025-11743 was published Jan 20, 2026
DupTerminator 1.4.5639.37199 contains a denial of service vulnerability that allows attackers to... Moderate Unreviewed
CVE-2021-47818 was published Jan 16, 2026
RarmaRadio 2.72.8 contains a denial of service vulnerability that allows attackers to crash the... Moderate Unreviewed
CVE-2021-47821 was published Jan 16, 2026
Sandboxie 5.49.7 contains a denial of service vulnerability that allows attackers to crash the... Moderate Unreviewed
CVE-2021-47831 was published Jan 16, 2026
WebSSH for iOS 14.16.10 contains a denial of service vulnerability in the mashREPL tool that... Moderate Unreviewed
CVE-2021-47827 was published Jan 16, 2026
iDailyDiary 4.30 contains a denial of service vulnerability that allows attackers to crash the... Moderate Unreviewed
CVE-2021-47824 was published Jan 16, 2026
Sysax Multi Server 6.95 contains a denial of service vulnerability in the administrative password... Moderate Unreviewed
CVE-2023-54337 was published Jan 14, 2026
Improper Validation of Specified Quantity in Input vulnerability in SaasProject Booking Package... High Unreviewed
CVE-2024-30516 was published Jan 5, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database