Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,521
Maven
5,000+
npm
5,000+
NuGet
912
pip
4,768
Pub
13
RubyGems
1,036
Rust
1,229
Swift
53
Unreviewed advisories
All unreviewed
5,000+

2,502 advisories

Loading
A flaw was found in GIMP. This vulnerability, a buffer overflow in the `file-seattle-filmworks`... Moderate Unreviewed
CVE-2026-40919 was published Apr 15, 2026
A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP... Moderate Unreviewed
CVE-2026-40916 was published Apr 15, 2026
ImageMagick has a heap out-of-bounds write in JP2 encoder Moderate
CVE-2026-40310 was published for Magick.NET-Q16-AnyCPU (NuGet) Apr 14, 2026
jakelamberson Credited to jakelamberson
DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that... Moderate Unreviewed
CVE-2026-27258 was published Apr 14, 2026
ImageMagick has an integer overflow in despeckle operation causing a heap buffer overflow on 32-bit builds Moderate
CVE-2026-34238 was published for Magick.NET-Q16-AnyCPU (NuGet) Apr 13, 2026
shitianyu-2004 Credited to shitianyu-2004
Out-of-bounds write vulnerability in the file system. Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2026-34863 was published Apr 13, 2026
BlueAuditor 1.7.2.0 contains a buffer overflow vulnerability in the registration key field that... Moderate Unreviewed
CVE-2019-25712 was published Apr 12, 2026
In TLSX_EchChangeSNI, the ctx->extensions branch set extensions unconditionally even when... Moderate Unreviewed
CVE-2026-5503 was published Apr 10, 2026
Wasmtime has out-of-bounds write or crash when transcoding component model strings Moderate
CVE-2026-35195 was published for wasmtime (Rust) Apr 9, 2026
alexcrichton Credited to alexcrichton
In sec boot, there is a possible out of bounds write due to an integer overflow. This could lead... Moderate Unreviewed
CVE-2026-20446 was published Apr 7, 2026
River Past Ringtone Converter 2.7.6.1601 contains a local buffer overflow vulnerability that... Moderate Unreviewed
CVE-2019-25665 was published Apr 5, 2026
TaskInfo 8.2.0.280 contains a local buffer overflow vulnerability that allows attackers to crash... Moderate Unreviewed
CVE-2019-25667 was published Apr 5, 2026
SpotAuditor 3.6.7 contains a local buffer overflow vulnerability in the Base64 Password Decoder... Moderate Unreviewed
CVE-2019-25666 was published Apr 5, 2026
Remote Process Explorer 1.0.0.16 contains a local buffer overflow vulnerability that allows... Moderate Unreviewed
CVE-2019-25661 was published Apr 5, 2026
LanHelper 1.74 contains a local buffer overflow vulnerability that allows attackers to crash the... Moderate Unreviewed
CVE-2019-25660 was published Apr 5, 2026
ASPRunner Professional 6.0.766 contains a local buffer overflow vulnerability that allows... Moderate Unreviewed
CVE-2019-25659 was published Apr 5, 2026
a-Mac Address Change 5.4 contains a local buffer overflow vulnerability that allows local... Moderate Unreviewed
CVE-2019-25658 was published Apr 5, 2026
IP TOOLS 2.50 contains a local buffer overflow vulnerability in the SNMP Scanner component that... Moderate Unreviewed
CVE-2018-25256 was published Apr 5, 2026
Termite 3.4 contains a buffer overflow vulnerability in the User interface language settings... Moderate Unreviewed
CVE-2018-25253 was published Apr 4, 2026
FTP Voyager 16.2.0 contains a denial of service vulnerability that allows local attackers to... Moderate Unreviewed
CVE-2018-25252 was published Apr 4, 2026
NetSchedScan 1.0 contains a buffer overflow vulnerability in the scan Hostname/IP field that... Moderate Unreviewed
CVE-2016-20050 was published Apr 4, 2026
A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated,... Moderate Unreviewed
CVE-2026-20097 was published Apr 1, 2026
An attacker might be able to trigger an out-of-bounds write by sending crafted DNS responses to a... Moderate Unreviewed
CVE-2026-27853 was published Mar 31, 2026
NetworkActiv Web Server 4.0 contains a buffer overflow vulnerability in the username field of the... Moderate Unreviewed
CVE-2018-25235 was published Mar 30, 2026
NetSetMan 4.7.1 contains a buffer overflow vulnerability in the Workgroup feature that allows... Moderate Unreviewed
CVE-2018-25228 was published Mar 30, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database