GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
1,128 advisories
Filter by severity
Denial of service in `tf.ragged.constant` due to lack of validation
Moderate
CVE-2022-29202
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation results in undefined behavior in `QuantizedConv2D`
Moderate
CVE-2022-29201
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `LSTMBlockCell`
Moderate
CVE-2022-29200
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `LoadAndRemapMatrix`
Moderate
CVE-2022-29199
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `SparseTensorToCSRSparseMatrix`
Moderate
CVE-2022-29198
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `UnsortedSegmentJoin`
Moderate
CVE-2022-29197
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `Conv3DBackpropFilterV2`
Moderate
CVE-2022-29196
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `StagePeek`
Moderate
CVE-2022-29195
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `DeleteSessionTensor`
Moderate
CVE-2022-29194
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation crashes `QuantizeAndDequantizeV4Grad`
Moderate
CVE-2022-29192
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `GetSessionTensor`
Moderate
CVE-2022-29191
was published
for
tensorflow
(pip)
May 24, 2022
Improper Input Validation in RESTEasy
High
CVE-2020-1695
was published
for
org.jboss.resteasy:resteasy-client
(Maven)
May 24, 2022
bson-objectid contains Improper input validation
High
CVE-2019-19729
was published
for
bson-objectid
(npm)
May 24, 2022
Pebble Templates Improper Input Validation vulnerability
Critical
CVE-2019-19899
was published
for
io.pebbletemplates:pebble-project
(Maven)
May 24, 2022
TYPO3 Image Processing susceptible to Code Execution
High
CVE-2019-11832
was published
for
typo3/cms
(Composer)
May 24, 2022
Magento is affected by an improper input validation vulnerability while saving a customer's details
Critical
CVE-2021-36025
was published
for
magento/community-edition
(Composer)
May 24, 2022
Magento is affected by an improper input validation vulnerability
High
CVE-2021-36032
was published
for
magento/community-edition
(Composer)
May 24, 2022
Magento allows attackers to alter the price of items
High
CVE-2021-36030
was published
for
magento/community-edition
(Composer)
May 24, 2022
Magento discloses sensitive information via the Multishipping Module
Moderate
CVE-2021-36038
was published
for
magento/community-edition
(Composer)
May 24, 2022
Magento affected by remote code execution via a file upload
High
CVE-2021-36034
was published
for
magento/community-edition
(Composer)
May 24, 2022
Magento executes code via the API File Option Upload Extension
Critical
CVE-2021-36042
was published
for
magento/community-edition
(Composer)
May 24, 2022
Magento has a file extension restrictions bypass
Critical
CVE-2021-36040
was published
for
magento/community-edition
(Composer)
May 24, 2022
Magento vulnerable to file upload attack
High
CVE-2021-36041
was published
for
magento/community-edition
(Composer)
May 24, 2022
Magento affected by a server-side denial-of-service using a GraphQL field
High
CVE-2021-36044
was published
for
magento/community-edition
(Composer)
May 24, 2022
Magento Improper input validation vulnerability
Moderate
CVE-2021-28585
was published
for
magento/community-edition
(Composer)
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API