GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,094
Erlang
29
GitHub Actions
19
Go
1,920
Maven
5,000+
npm
3,648
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
822
Swift
35
Unreviewed advisories
All unreviewed
5,000+
318 advisories
Filter by severity
Vulnerability of improper checking for unusual or exceptional conditions
in Lamassu Bitcoin ATM...
Moderate
Unreviewed
CVE-2024-0675
was published
Jan 30, 2024
The vulnerability is caused by improper check for check if RDLENGTH does not overflow the buffer...
High
Unreviewed
CVE-2023-32726
was published
Dec 22, 2023
A user authorized to perform database queries may trigger denial of service by issuing specially...
Moderate
Unreviewed
CVE-2019-20924
was published
May 24, 2022
The issue was addressed with improved checks. This issue is fixed in iOS 16.7 and iPadOS 16.7, OS...
High
Unreviewed
CVE-2023-41992
was published
Sep 21, 2023
The Gallery Plugin for WordPress – Envira Photo Gallery plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2023-6742
was published
Jan 11, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in Routing Protocol Daemon...
High
Unreviewed
CVE-2024-21614
was published
Jan 12, 2024
An Improper Check for Unusual or Exceptional Conditions vulnerability in the kernel of Juniper...
Moderate
Unreviewed
CVE-2024-21603
was published
Jan 12, 2024
An elevation of privilege vulnerability exists when the Windows Language Pack Installer...
Moderate
Unreviewed
CVE-2020-1122
was published
May 24, 2022
Vulnerability of data verification errors in the kernel module. Successful exploitation of this...
High
Unreviewed
CVE-2023-44099
was published
Dec 6, 2023
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). The Web UI...
Low
Unreviewed
CVE-2023-48429
was published
Dec 12, 2023
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). Affected...
Moderate
Unreviewed
CVE-2023-48431
was published
Dec 12, 2023
Mattermost fails to validate the type of the "reminder" body request parameter allowing an...
Moderate
Unreviewed
CVE-2023-49607
was published
Dec 12, 2023
Uncaught exception for some Intel Unison software may allow an authenticated user to potentially...
Moderate
Unreviewed
CVE-2023-22290
was published
Nov 14, 2023
Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to...
Moderate
Unreviewed
CVE-2023-39205
was published
Nov 15, 2023
Shopware improper mail validation vulnerability
Moderate
CVE-2023-34099
was published
for
shopware/shopware
(Composer)
Jun 28, 2023
Mattermost denial of service vulnerability
Moderate
CVE-2023-5967
was published
for
github.com/mattermost/mattermost-server/v6
(Go)
Nov 6, 2023
Feathers socket handler allows abusing implicit toString
High
CVE-2023-37899
was published
for
@feathersjs/socketio
(npm)
Jul 20, 2023
Electron context isolation bypass via nested unserializable return value
Moderate
CVE-2023-29198
was published
for
electron
(npm)
Sep 6, 2023
Apollo Router vulnerable to Improper Check or Handling of Exceptional Conditions
High
CVE-2023-45812
was published
for
apollo-router
(Rust)
Oct 19, 2023
ink! vulnerable to incorrect decoding of storage value when using `DelegateCall`
Moderate
CVE-2023-34449
was published
for
ink
(Rust)
Jun 14, 2023
OctoRPKI crashes when max iterations is reached
Moderate
CVE-2022-3616
was published
for
github.com/cloudflare/cfrpki
(Go)
Oct 31, 2022
DoS attack can be performed when an email contains specially designed URL in the body. It can...
Moderate
Unreviewed
CVE-2021-21439
was published
May 24, 2022
Potential buffer overflow in psd-tools
Critical
CVE-2020-10571
was published
for
psd-tools
(pip)
Mar 16, 2020
Crash when type cannot be specialized in Tensorflow
Moderate
CVE-2022-23572
was published
for
tensorflow
(pip)
Feb 9, 2022
HyperKit is a toolkit for embedding hypervisor capabilities in an application. In versions 0...
High
Unreviewed
CVE-2021-32846
was published
Feb 18, 2023
ProTip!
Advisories are also available from the
GraphQL API