Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

403 advisories

Loading
REXML DoS vulnerability Moderate
CVE-2024-41946 was published for rexml (RubyGems) Aug 2, 2024
naitoh
matrix-media-repo (MMR) allows denial of service/high operating costs through unauthenticated downloads Moderate
CVE-2024-36403 was published for github.com/t2bot/matrix-media-repo (Go) Jan 16, 2025
Joomla! 1.03 does not restrict the number of "Search" Mambots, which allows remote attackers to... Moderate Unreviewed
CVE-2005-4650 was published May 1, 2022
Django has a potential denial-of-service vulnerability in IPv6 validation Moderate
CVE-2024-56374 was published for Django (pip) Jan 14, 2025
Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of... Moderate Unreviewed
CVE-2019-9516 was published May 24, 2022
mp4v2 v2.1.2 was discovered to contain a memory leak via the class MP4BytesProperty. Moderate Unreviewed
CVE-2023-33720 was published May 26, 2023
Django denial-of-service in django.utils.html.strip_tags() Moderate
CVE-2024-53907 was published for Django (pip) Dec 6, 2024
An allocation of resources without limits or throttling [CWE-770] vulnerability in FortiOS... Moderate Unreviewed
CVE-2024-46666 was published Jan 14, 2025
An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to... Moderate Unreviewed
CVE-2023-29737 was published May 30, 2023
If a MIME email combines OpenPGP and OpenPGP MIME data in a certain way Thunderbird repeatedly... Moderate Unreviewed
CVE-2023-0616 was published Jun 2, 2023
Regular expressions used to filter out forbidden properties and values from style directives in... Moderate Unreviewed
CVE-2023-23603 was published Jun 2, 2023
SixLabors.ImageSharp vulnerable to Memory Allocation with Excessive Size Value Moderate
CVE-2024-32035 was published for SixLabors.ImageSharp (NuGet) Apr 15, 2024
skanejohan
In the Linux kernel, the following vulnerability has been resolved: media: s5p_cec: limit msg... Moderate Unreviewed
CVE-2022-49035 was published Jan 2, 2025
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix cpu stuck... Moderate Unreviewed
CVE-2024-56722 was published Dec 29, 2024
IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1... Moderate Unreviewed
CVE-2022-22491 was published Jan 9, 2025
In dialer service, there is a possible missing permission check. This could lead to local denial... Moderate Unreviewed
CVE-2022-48440 was published Jun 6, 2023
In dialer service, there is a possible missing permission check. This could lead to local denial... Moderate Unreviewed
CVE-2022-48441 was published Jun 6, 2023
Next.js Allows a Denial of Service (DoS) with Server Actions Moderate
CVE-2024-56332 was published for next (npm) Jan 3, 2025
gnoff ztanner
eps1lon
IBM Security ReaQta 3.12 could allow a privileged user to cause a denial of service by sending... Moderate Unreviewed
CVE-2024-45100 was published Jan 7, 2025
An issue found in CrossX v.1.15.3 for Android allows a local attacker to cause a persistent... Moderate Unreviewed
CVE-2023-29767 was published Jun 9, 2023
REXML DoS vulnerability Moderate
CVE-2024-41123 was published for rexml (RubyGems) Aug 1, 2024
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is... Moderate Unreviewed
CVE-2023-30443 was published Dec 19, 2024
In multiple functions of SnoozeHelper.java, there is a possible persistent denial of service due... Moderate Unreviewed
CVE-2024-0026 was published May 7, 2024
In multiple functions of SnoozeHelper.java, there is a possible way to cause a boot loop due to... Moderate Unreviewed
CVE-2024-0027 was published May 7, 2024
HP-UX could be exploited locally to create a Denial of Service (DoS) when any physical interface... Moderate Unreviewed
CVE-2023-30903 was published Jun 16, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database