Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,468
Erlang
33
GitHub Actions
23
Go
2,172
Maven
5,000+
npm
3,833
NuGet
696
pip
3,508
Pub
12
RubyGems
910
Rust
908
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

35 advisories

Loading
Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90... Moderate Unreviewed
CVE-2023-2938 was published May 31, 2023
Form validation popups could capture escape key presses. Therefore, spamming form validation... Moderate Unreviewed
CVE-2024-6610 was published Jul 9, 2024
Inappropriate implementation in UI in Google Chrome on iOS prior to 129.0.6668.58 allowed a... Moderate Unreviewed
CVE-2024-8909 was published Sep 17, 2024
Inappropriate implementation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a... Moderate Unreviewed
CVE-2025-0446 was published Jan 15, 2025
In certain scenarios a malicious website could attempt to display a fake location URL bar which... Moderate Unreviewed
CVE-2024-38313 was published Jun 13, 2024
Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote... Moderate Unreviewed
CVE-2024-6999 was published Aug 6, 2024
By manipulating the fullscreen feature while opening a data-list, an attacker could have overlaid... Moderate Unreviewed
CVE-2024-5698 was published Jun 11, 2024
Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90... Moderate Unreviewed
CVE-2023-2937 was published May 31, 2023
Inappropriate implementation in Extensions API in Google Chrome prior to 114.0.5735.90 allowed an... Moderate Unreviewed
CVE-2023-2941 was published May 31, 2023
Inappropriate implementation in Selection in Google Chrome on Android prior to 134.0.6998.35... Moderate Unreviewed
CVE-2025-1922 was published Mar 5, 2025
A web page could trick a user into setting that site as the default handler for a custom URL... Moderate Unreviewed
CVE-2025-1935 was published Mar 4, 2025
IBM ApplinX 11.1 could allow a remote attacker to hijack the clicking action of the victim. By... Moderate Unreviewed
CVE-2024-49796 was published Feb 6, 2025
Microsoft Outlook Spoofing Vulnerability Moderate Unreviewed
CVE-2025-21259 was published Feb 11, 2025
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2025-21404 was published Feb 7, 2025
Inappropriate implementation in Extensions API in Google Chrome prior to 133.0.6943.53 allowed a... Moderate Unreviewed
CVE-2025-0451 was published Feb 4, 2025
Microsoft Edge for IOS and Android Spoofing Vulnerability Moderate Unreviewed
CVE-2025-21253 was published Feb 7, 2025
A vulnerability was found in TP-Link TL-SG108E 1.0.0 Build 20201208 Rel. 40304. It has been rated... Moderate Unreviewed
CVE-2025-0729 was published Jan 27, 2025
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2025-21262 was published Jan 25, 2025
Windows SmartScreen Spoofing Vulnerability Moderate Unreviewed
CVE-2025-21314 was published Jan 14, 2025
IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content... Moderate Unreviewed
CVE-2024-55896 was published Jan 4, 2025
Multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST... Moderate Unreviewed
CVE-2024-47044 was published Sep 26, 2024
Dell E-Lab Navigator, [3.1.9, 3.2.0], contains an Insecure Direct Object Reference Vulnerability... Moderate Unreviewed
CVE-2024-22455 was published Oct 16, 2024
Inappropriate implementation in UI in Google Chrome prior to 124.0.6367.60 allowed a remote... Moderate Unreviewed
CVE-2024-7019 was published Sep 24, 2024
Inappropriate implementation in Navigation in Google Chrome prior to 113.0.5672.63 allowed a... Moderate Unreviewed
CVE-2023-7282 was published Sep 24, 2024
Inappropriate implementation in Compositing in Google Chrome prior to 119.0.6045.105 allowed a... Moderate Unreviewed
CVE-2023-7281 was published Sep 24, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database