Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,036 advisories

Loading
Trac reStructuredText breach of privacy and denial of service vulnerability High
CVE-2006-3695 was published for trac (pip) May 1, 2022
Microsoft w3wp (aka w3wp.exe) does not properly handle when the AspCompat directive is not used... High Unreviewed
CVE-2006-1364 was published May 1, 2022
Opera 8.01 allows remote attackers to cause a denial of service (CPU consumption) via a crafted... Moderate Unreviewed
CVE-2005-2309 was published May 1, 2022
Stack consumption vulnerability in Microsoft Exchange Server 2003 SP1 allows users to cause a... Moderate Unreviewed
CVE-2005-0738 was published May 1, 2022
Microsoft Exchange 2000 allows remote authenticated attackers to cause a denial of service via a... Low Unreviewed
CVE-2002-1876 was published Apr 30, 2022
Microsoft Exchange 2000, when used with Microsoft Remote Procedure Call (MSRPC), allows remote... Moderate Unreviewed
CVE-2002-1873 was published Apr 30, 2022
Apache Tomcat DoS Via Requests Including Null Characters Moderate
CVE-2002-0935 was published for org.apache.tomcat:tomcat (Maven) Apr 30, 2022
Zope Server vulnerable to DoS via header injection Moderate
CVE-2002-0687 was published for zope (pip) Apr 30, 2022
The Store Service in Microsoft Exchange 2000 allows remote attackers to cause a denial of service... Moderate Unreviewed
CVE-2002-0368 was published Apr 30, 2022
Cerberus FTP server 1.0 - 1.5 allows remote attackers to cause a denial of service (crash) via a... Moderate Unreviewed
CVE-2001-0827 was published Apr 30, 2022
Outlook Web Access (OWA) in Microsoft Exchange 2000 allows an authenticated user to cause a... Low Unreviewed
CVE-2001-0666 was published Apr 30, 2022
Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt ... Moderate Unreviewed
CVE-1999-0159 was published Apr 30, 2022
Apache James Denial of Service Moderate
CVE-2004-2650 was published for org.apache.james:james-server (Maven) Apr 29, 2022
Jetty HTTP Server Denial of Service vulnerability Moderate
CVE-2004-2381 was published for org.mortbay.jetty:jetty (Maven) Apr 29, 2022
Cisco IOS 12.2(15) and earlier allows remote attackers to cause a denial of service (refused VTY ... Moderate Unreviewed
CVE-2004-1464 was published Apr 29, 2022
Opera 7.54 allows remote attackers to cause a denial of service (application crash from memory... Moderate Unreviewed
CVE-2004-1201 was published Apr 29, 2022
Apache Tomcat Denial of Service vulnerability in the Catalina package Moderate
CVE-2003-0866 was published for org.apache.tomcat:tomcat (Maven) Apr 29, 2022
The Internet Mail Service in Exchange Server 5.5 and Exchange 2000 allows remote attackers to... High Unreviewed
CVE-2003-0714 was published Apr 29, 2022
Jakarta Tomcat Denial of Service vulnerability Moderate
CVE-2003-0045 was published for org.apache.tomcat:tomcat (Maven) Apr 29, 2022
OutOfMemory Exception by specifically crafted processing instruction in NekoHtml Parser High
CVE-2022-29546 was published for net.sourceforge.htmlunit:neko-htmlunit (Maven) Apr 26, 2022
kurt-r2c
Credited to kurt-r2c
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the fsicapd... High Unreviewed
CVE-2022-28871 was published Apr 26, 2022
The IPv6 implementation in FreeBSD and NetBSD (unknown versions, year 2012 and earlier) allows... High Unreviewed
CVE-2012-5363 was published Apr 23, 2022
A denial of service flaw was found in the way the server component of Freeciv before 2.3.4... High Unreviewed
CVE-2012-5645 was published Apr 23, 2022
PyXML: Hash table collisions CPU usage Denial of Service High Unreviewed
CVE-2012-0877 was published Apr 23, 2022
Denial of Service in http-swagger High
CVE-2022-24863 was published for github.com/swaggo/http-swagger (Go) Apr 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database