Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,126
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,422 advisories

Loading
Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow High
CVE-2024-32655 was published for Npgsql (NuGet) May 9, 2024
paul-gerste-sonarsource NinoFloris
GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-44443 was published May 3, 2024
Unified Automation UaGateway Certificate Parsing Integer Overflow Denial-of-Service Vulnerability... High Unreviewed
CVE-2023-41185 was published May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-40475 was published May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-40474 was published May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-38104 was published May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-38103 was published May 3, 2024
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-37327 was published May 3, 2024
An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an... High Unreviewed
CVE-2024-34402 was published May 3, 2024
An Integer Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3... High Unreviewed
CVE-2024-23531 was published Apr 19, 2024
An issue in `coap_pdu.c` in libcoap 4.3.4 allows attackers to cause undefined behavior via a... High Unreviewed
CVE-2024-31031 was published Apr 17, 2024
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix hashtab overflow... High Unreviewed
CVE-2024-26884 was published Apr 17, 2024
Animate versions 23.0.4, 24.0.1 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-20795 was published Apr 11, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-28931 was published Apr 9, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-28929 was published Apr 9, 2024
Microsoft OLE DB Driver for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-28942 was published Apr 9, 2024
Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-28936 was published Apr 9, 2024
Memory corruption while allocating memory for graphics. High Unreviewed
CVE-2024-21470 was published Apr 1, 2024
Transient DOS while decoding the ToBeSignedMessage in Automotive Telematics. High Unreviewed
CVE-2024-21454 was published Apr 1, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21444 was published Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21441 was published Mar 12, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-21450 was published Mar 12, 2024
pgproto3 SQL Injection via Protocol Message Size Overflow High
GHSA-7jwh-3vrq-q3m8 was published for github.com/jackc/pgproto3 (Go) Mar 4, 2024
paul-gerste-sonarsource
pgx SQL Injection via Protocol Message Size Overflow High
CVE-2024-27304 was published for github.com/jackc/pgx (Go) Mar 4, 2024
paul-gerste-sonarsource
In the Linux kernel, the following vulnerability has been resolved: hwmon: (lm90) Prevent... High Unreviewed
CVE-2021-47098 was published Mar 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database