Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,230 advisories

Loading
Pexip Infinity before 28.1 allows remote attackers to trigger a software abort via G.719. High Unreviewed
CVE-2022-32263 was published Jul 18, 2022
The simplepush server iterates through the application installations and pushes a notification to... High Unreviewed
CVE-2014-3648 was published Jul 2, 2022
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing... High Unreviewed
CVE-2021-24893 was published Jan 4, 2022
Regular expression denial of service in react-native High
CVE-2020-1920 was published for react-native (npm) Jul 20, 2021
The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1... High Unreviewed
CVE-2017-11527 was published May 17, 2022
The regex code in Webkit 2.4.11 allows remote attackers to cause a denial of service (memory... High Unreviewed
CVE-2016-9643 was published May 17, 2022
Uncontrolled Resource Consumption in fast-string-search High
CVE-2022-22138 was published for fast-string-search (npm) Jun 18, 2022
The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1... High Unreviewed
CVE-2017-11526 was published May 17, 2022
kittoframework kitto version 0.5.1 is vulnerable to memory exhaustion in the router resulting in DoS High Unreviewed
CVE-2017-1000064 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. The issue... High Unreviewed
CVE-2017-7007 was published May 17, 2022
The ReadEPTImage function in coders/ept.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1... High Unreviewed
CVE-2017-11530 was published May 17, 2022
Lighttpd 1.4.56 through 1.4.58 allows a remote attacker to cause a denial of service (CPU... High Unreviewed
CVE-2022-30780 was published Jun 12, 2022
RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows... High Unreviewed
CVE-2021-36924 was published May 24, 2022
Uses of deprecated API can be used to cause DoS in user-facing endpoints High
CVE-2022-31054 was published for github.com/argoproj/argo-events (Go) Jun 17, 2022
DavidKorczynski AdamKorcz
Uncontrolled Resource Consumption vulnerability in MELSEC iQ-R Series R00/01/02CPU Firmware... High Unreviewed
CVE-2021-20609 was published Dec 2, 2021
On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPC (Modular Port... High Unreviewed
CVE-2021-0202 was published May 24, 2022
Windows Network Address Translation (NAT) Denial of Service Vulnerability. High Unreviewed
CVE-2022-30152 was published Jun 16, 2022
Potential security vulnerabilities have been discovered on a certain HP LaserJet Pro printer that... High Unreviewed
CVE-2021-3704 was published May 24, 2022
An issue was discovered in Barrier before 2.3.4. The barriers component (aka the server-side... High Unreviewed
CVE-2021-42075 was published May 24, 2022
A vulnerability in Ethernet over GRE (EoGRE) packet processing of Cisco IOS XE Wireless... High Unreviewed
CVE-2021-1611 was published May 24, 2022
It has been discovered that redhat-certification does not properly limit the number of recursive... High Unreviewed
CVE-2018-10868 was published May 24, 2022
An uncontrolled resource consumption (memory leak) flaw was found in ZeroMQ's src/xpub.cpp in... High Unreviewed
CVE-2021-20237 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when... High Unreviewed
CVE-2021-20216 was published May 24, 2022
An issue was discovered in Schneider Electric Conext ComBox, model 865-1058, all firmware... High Unreviewed
CVE-2017-6019 was published May 17, 2022
A restricted shell escape sequence is possible on Cradlepoint IBR900-600 7.2.60 devices that can... High Unreviewed
CVE-2021-37471 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database