Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,577 advisories

Loading
Validation bypass in frourio High
CVE-2022-23623 was published for frourio (npm) Feb 7, 2022
SegaraRai LumaKernel
Credited to SegaraRai and LumaKernel
Validation bypass in frourio-express High
CVE-2022-23624 was published for frourio-express (npm) Feb 7, 2022
SegaraRai LumaKernel
Credited to SegaraRai and LumaKernel
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44378 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44379 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44374 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44381 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44376 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44370 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44372 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44369 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44373 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44367 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44380 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44371 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44368 was published Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality... High Unreviewed
CVE-2021-44377 was published Feb 9, 2022
Server-side request forgery (SSRF) in Apache XmlGraphics Commons High
CVE-2020-11988 was published for org.apache.xmlgraphics:xmlgraphics-commons (Maven) Feb 9, 2022
Server-side request forgery (SSRF) in Apache Batik High
CVE-2019-17566 was published for org.apache.xmlgraphics:batik (Maven) Feb 9, 2022
Improper Input Validation in Keycloak High
CVE-2020-1714 was published for org.keycloak:keycloak-common (Maven) Feb 9, 2022
Data Amplification in Play Framework Low
CVE-2020-28923 was published for com.typesafe.play:play (Maven) Feb 9, 2022
Improper Input Validation in Apache Unomi High
CVE-2020-11975 was published for org.apache.unomi:unomi (Maven) Feb 9, 2022
Lack of validation of URLs causes Mirantis Container Cloud Lens Extension before v3.1.1 to open... High Unreviewed
CVE-2022-0484 was published Feb 10, 2022
Improper Input Validation vulnerability in the ABB SPIET800 and PNI800 module allows an attacker... High Unreviewed
CVE-2021-22286 was published Feb 10, 2022
Improper Input Validation vulnerability in the ABB SPIET800 and PNI800 module allows an attacker... High Unreviewed
CVE-2021-22288 was published Feb 10, 2022
A file write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc.... High Unreviewed
CVE-2021-21968 was published Feb 10, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database