Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,135
Maven
5,000+
npm
3,797
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,284 advisories

Loading
The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote... High Unreviewed
CVE-2016-2225 was published May 17, 2022
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions... High Unreviewed
CVE-2016-9367 was published May 17, 2022
Pexip Infinity before 27.3 allows remote attackers to trigger excessive resource consumption via... High Unreviewed
CVE-2022-27937 was published Jul 18, 2022
mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a... High Unreviewed
CVE-2016-3104 was published May 17, 2022
The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS... High Unreviewed
CVE-2016-2224 was published May 17, 2022
** DISPUTED ** quic-go through 0.27.0 allows remote attackers to cause a denial of service (CPU... High Unreviewed
CVE-2022-30591 was published Jul 7, 2022
Pexip Infinity before 28.1 allows remote attackers to trigger a software abort via G.719. High Unreviewed
CVE-2022-32263 was published Jul 18, 2022
The simplepush server iterates through the application installations and pushes a notification to... High Unreviewed
CVE-2014-3648 was published Jul 2, 2022
Regular expression denial of service in react-native High
CVE-2020-1920 was published for react-native (npm) Jul 20, 2021
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing... High Unreviewed
CVE-2021-24893 was published Jan 4, 2022
The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1... High Unreviewed
CVE-2017-11527 was published May 17, 2022
The regex code in Webkit 2.4.11 allows remote attackers to cause a denial of service (memory... High Unreviewed
CVE-2016-9643 was published May 17, 2022
Uncontrolled Resource Consumption in fast-string-search High
CVE-2022-22138 was published for fast-string-search (npm) Jun 18, 2022
The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1... High Unreviewed
CVE-2017-11526 was published May 17, 2022
kittoframework kitto version 0.5.1 is vulnerable to memory exhaustion in the router resulting in DoS High Unreviewed
CVE-2017-1000064 was published May 17, 2022
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. The issue... High Unreviewed
CVE-2017-7007 was published May 17, 2022
The ReadEPTImage function in coders/ept.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1... High Unreviewed
CVE-2017-11530 was published May 17, 2022
Lighttpd 1.4.56 through 1.4.58 allows a remote attacker to cause a denial of service (CPU... High Unreviewed
CVE-2022-30780 was published Jun 12, 2022
RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows... High Unreviewed
CVE-2021-36924 was published May 24, 2022
Uses of deprecated API can be used to cause DoS in user-facing endpoints High
CVE-2022-31054 was published for github.com/argoproj/argo-events (Go) Jun 17, 2022
DavidKorczynski AdamKorcz
On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPC (Modular Port... High Unreviewed
CVE-2021-0202 was published May 24, 2022
Uncontrolled Resource Consumption vulnerability in MELSEC iQ-R Series R00/01/02CPU Firmware... High Unreviewed
CVE-2021-20609 was published Dec 2, 2021
Potential security vulnerabilities have been discovered on a certain HP LaserJet Pro printer that... High Unreviewed
CVE-2021-3704 was published May 24, 2022
An issue was discovered in Barrier before 2.3.4. The barriers component (aka the server-side... High Unreviewed
CVE-2021-42075 was published May 24, 2022
A vulnerability in Ethernet over GRE (EoGRE) packet processing of Cisco IOS XE Wireless... High Unreviewed
CVE-2021-1611 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database