GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,362
Erlang
33
GitHub Actions
22
Go
2,131
Maven
5,000+
npm
3,795
NuGet
686
pip
3,473
Pub
12
RubyGems
896
Rust
894
Swift
38
Unreviewed advisories
All unreviewed
5,000+
1,279 advisories
Filter by severity
On D-Link DIR-819 Firmware Version 1.06 Hardware Version A1 devices, it is possible to trigger a...
High
Unreviewed
CVE-2022-40946
was published
Apr 16, 2023
When a BIG-IP message routing profile is configured on a virtual server, undisclosed traffic can...
High
Unreviewed
CVE-2025-20058
was published
Feb 5, 2025
When Client or Server SSL profiles are configured on a Virtual Server, or DNSSEC signing...
High
Unreviewed
CVE-2025-21087
was published
Feb 5, 2025
Starting in Python 3.12.0, the asyncio._SelectorSocketTransport.writelines()
method would not ...
High
Unreviewed
CVE-2024-12254
was published
Dec 6, 2024
There is a LOW severity vulnerability affecting CPython, specifically the
'http.cookies' standard...
High
Unreviewed
CVE-2024-7592
was published
Aug 19, 2024
Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader
High
CVE-2024-47554
was published
for
commons-io:commons-io
(Maven)
Oct 3, 2024
Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash...
High
Unreviewed
CVE-2023-28882
was published
Apr 28, 2023
A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary...
High
Unreviewed
CVE-2024-4148
was published
Jun 1, 2024
A vulnerability has been identified where a maliciously crafted message containing a specific...
High
Unreviewed
CVE-2023-28356
was published
May 12, 2023
In several functions of SnoozeHelper.java, there is a possible way to grant notifications access...
High
Unreviewed
CVE-2023-21110
was published
May 16, 2023
Uncontrolled Resource Consumption in moodle
High
CVE-2024-25978
was published
for
moodle/moodle
(Composer)
Feb 19, 2024
go-git clients vulnerable to DoS via maliciously crafted Git server replies
High
CVE-2025-21614
was published
for
github.com/go-git/go-git
(Go)
Jan 6, 2025
Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially...
High
Unreviewed
CVE-2019-9517
was published
May 24, 2022
Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a...
High
Unreviewed
CVE-2019-9518
was published
May 24, 2022
Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of...
High
Unreviewed
CVE-2019-9513
was published
May 24, 2022
Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial...
High
Unreviewed
CVE-2019-9515
was published
May 24, 2022
Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization...
High
Unreviewed
CVE-2019-9511
was published
May 24, 2022
Windows upnphost.dll Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21389
was published
Jan 14, 2025
Windows Remote Desktop Services Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21330
was published
Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21289
was published
Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21251
was published
Jan 14, 2025
Windows upnphost.dll Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21300
was published
Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21290
was published
Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
High
Unreviewed
CVE-2025-21270
was published
Jan 14, 2025
ProTip!
Advisories are also available from the
GraphQL API