Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,366 advisories

Loading
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to... Moderate Unreviewed
CVE-2024-22104 was published Jul 2, 2024
Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to... Moderate Unreviewed
CVE-2024-22102 was published Jul 2, 2024
Multiple Denial of Service (DoS) conditions has been discovered in GitLab CE/EE affecting all... Moderate Unreviewed
CVE-2024-4557 was published Jun 27, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 12.0 prior to 16.11... Moderate Unreviewed
CVE-2024-1816 was published Jun 27, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 9.2 prior to 16.11.5... Moderate Unreviewed
CVE-2024-1493 was published Jun 27, 2024
Adminer and AdminerEvo allow an unauthenticated remote attacker to cause a denial of service by... Moderate Unreviewed
CVE-2023-45196 was published Jun 24, 2024
An issue was discovered in VirtoSoftware Virto Bulk File Download 5.5.44 for SharePoint 2019. The... Moderate Unreviewed
CVE-2024-33881 was published Jun 24, 2024
Improper line feed handling in zenml Moderate
CVE-2024-4460 was published for zenml (pip) Jun 24, 2024
A high-privileged user, allowed to create custom osquery packs 17 could affect the availability... Moderate Unreviewed
CVE-2024-23443 was published Jun 19, 2024
An uncontrolled resource consumption vulnerability exists in the `upload-link` endpoint of... Moderate Unreviewed
CVE-2024-5208 was published Jun 19, 2024
Minder affected by denial of service from maliciously configured Git repository Moderate
CVE-2024-37904 was published for github.com/stacklok/minder (Go) Jun 18, 2024
AdamKorcz DavidKorczynski
Credited to AdamKorcz and DavidKorczynski
there is a possible persistent Denial of Service due to test/debugging code left in a production... Moderate Unreviewed
CVE-2024-32912 was published Jun 13, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.4 prior to 16... Moderate Unreviewed
CVE-2024-1963 was published Jun 13, 2024
An issue has been discovered in GitLab CE/EE affecting all versions prior to 16.10.7, starting... Moderate Unreviewed
CVE-2024-1736 was published Jun 13, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.1 prior to... Moderate Unreviewed
CVE-2024-1495 was published Jun 13, 2024
gqlparser denial of service vulnerability via the parserDirectives function Moderate
CVE-2023-49559 was published for github.com/vektah/gqlparser (Go) Jun 12, 2024
Excessive platform resource consumption within a loop issue exists in Cybozu Garoon 5.0.0 to 5.15... Moderate Unreviewed
CVE-2024-31399 was published Jun 11, 2024
SAP NetWeaver and ABAP platform allows an attacker to impede performance for legitimate users by... Moderate Unreviewed
CVE-2024-33001 was published Jun 11, 2024
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13... Moderate Unreviewed
CVE-2024-27800 was published Jun 10, 2024
The issue was addressed with improvements to the file handling protocol. This issue is fixed in... Moderate Unreviewed
CVE-2024-27812 was published Jun 10, 2024
GNOME VTE before 0.76.3 allows an attacker to cause a denial of service (memory consumption) via... Moderate Unreviewed
CVE-2024-37535 was published Jun 9, 2024
mintplex-labs/anything-llm is affected by an uncontrolled resource consumption vulnerability in... Moderate Unreviewed
CVE-2024-3153 was published Jun 6, 2024
Denial of service in langchain-community Moderate
CVE-2024-2965 was published for langchain (pip) Jun 6, 2024
eyurtsev efriis
Credited to eyurtsev and efriis
Denial of Service (DoS) attack possibility in TYPO3 component Indexed Search Moderate
GHSA-pmxp-7224-h794 was published for typo3/cms (Composer) Jun 4, 2024
An invalid pointer in the modbus_receive() function of libmodbus v3.1.6 allows attackers to cause... Moderate Unreviewed
CVE-2024-36845 was published May 31, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database