GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,677

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

913 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed

CVE-2025-33040 was published Oct 3, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed

CVE-2025-44007 was published Oct 3, 2025

In Splunk Enterprise versions below 10.0.1, 9.4.4, 9.3.6, and 9.2.8, and Splunk Cloud Platform... Moderate Unreviewed

CVE-2025-20370 was published Oct 1, 2025

IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to a denial of service, caused by... Moderate Unreviewed

CVE-2025-36099 was published Sep 29, 2025

Denial of Service issue in GraphQL endpoints in Gitlab EE/CE affecting all versions from 11.10... High Unreviewed

CVE-2025-8014 was published Sep 27, 2025

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.2 before 18.2.7,... Moderate Unreviewed

CVE-2025-11042 was published Sep 26, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.2.7, 18.3... Low Unreviewed

CVE-2025-10867 was published Sep 26, 2025

An issue was discovered in GitLab CE/EE affecting all versions before 18.2.7, 18.3 before 18.3.3,... High Unreviewed

CVE-2025-10858 was published Sep 26, 2025

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a... High Unreviewed

CVE-2025-59375 was published Sep 15, 2025

IBM PowerVM Hypervisor FW950.00 through FW950.E0, FW1050.00 through FW1050.50, and FW1060.00... Moderate Unreviewed

CVE-2025-36035 was published Sep 14, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 15.0 before 18.1.6, 18.2... Moderate Unreviewed

CVE-2025-1250 was published Sep 12, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 7.8 before 18.1.6, 18.2... Moderate Unreviewed

CVE-2025-7337 was published Sep 12, 2025

IBM Security Verify Information Queue 10.0.5, 10.0.6, 10.0.7, and 10.0.8 could allow a remote... Moderate Unreviewed

CVE-2024-45669 was published Sep 10, 2025

The mikecao/flight PHP framework in versions prior to v1.2 is vulnerable to Denial of Service ... High Unreviewed

CVE-2014-125127 was published Sep 3, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed

CVE-2025-30260 was published Aug 29, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed

CVE-2025-30261 was published Aug 29, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed

CVE-2025-29890 was published Aug 29, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed

CVE-2025-29899 was published Aug 29, 2025

An allocation of resources without limits or throttling vulnerability has been reported to affect... High Unreviewed

CVE-2025-29900 was published Aug 29, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 14.1 before 18.1.5, 18.2... Moderate Unreviewed

CVE-2025-4225 was published Aug 27, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 8.15 before 18.1.5, 18.2... Moderate Unreviewed

CVE-2025-3601 was published Aug 27, 2025

IBM WebSphere Application Server Liberty 18.0.0.2 through 25.0.0.8 is vulnerable to a denial of... Moderate Unreviewed

CVE-2025-36047 was published Aug 14, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 11.6 before 18.0.6, 18.1... Moderate Unreviewed

CVE-2025-2614 was published Aug 13, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 8.14 before 18.0.6, 18.1... Moderate Unreviewed

CVE-2025-1477 was published Aug 13, 2025

An HTTP/2 implementation flaw allows a denial-of-service (DoS) that uses malformed HTTP/2 control... Moderate Unreviewed

CVE-2025-54500 was published Aug 13, 2025

Previous 12…37 Next

Previous 1 2 3 4 5 … 36 37 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

913 advisories