GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,677

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

36 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

IBM Concert Software 1.0.0 through 1.1.0 could allow a remote attacker to cause a denial of... High Unreviewed

CVE-2025-33090 was published Aug 18, 2025

The WP-Syntax WordPress plugin through 1.2 does not properly handle input, allowing an attacker... High Unreviewed

CVE-2024-13926 was published Apr 19, 2025

Running DDoS on tcp port 22 will trigger a kernel crash. This issue is introduced by the backport... High Unreviewed

CVE-2023-0881 was published Mar 31, 2025

A Regular Expression Denial of Service (ReDoS) vulnerability exists in lunary-ai/lunary version... High Unreviewed

CVE-2024-8998 was published Mar 20, 2025

Lunary-ai/lunary version git 105a3f6 is vulnerable to a Regular Expression Denial of Service ... High Unreviewed

CVE-2024-8789 was published Mar 20, 2025

A vulnerability in lunary-ai/lunary, as of commit be54057, allows users to upload and execute... High Unreviewed

CVE-2024-8764 was published Mar 20, 2025

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary... High Unreviewed

CVE-2024-8763 was published Mar 20, 2025

A vulnerability in danswer-ai/danswer version 1 allows an attacker to perform a Regular... High Unreviewed

CVE-2024-7779 was published Mar 20, 2025

An issue in the validate_email function in CTFd/utils/validators/__init__.py of CTFd 3.7.3 allows... High Unreviewed

CVE-2024-46242 was published Jan 7, 2025

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote... High Unreviewed

CVE-2024-41766 was published Jan 4, 2025

HTML2Markdown is a Javascript implementation for converting HTML to Markdown text. All available... High Unreviewed

CVE-2020-26307 was published Oct 26, 2024

Validate.js provides a declarative way of validating javascript objects. All versions as of 30... High Unreviewed

CVE-2020-26310 was published Oct 26, 2024

Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows DoS/ReDos via email.... High Unreviewed

CVE-2024-48938 was published Oct 11, 2024

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7... High Unreviewed

CVE-2024-8124 was published Sep 12, 2024

There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed... High Unreviewed

CVE-2024-6232 was published Sep 3, 2024

There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard... High Unreviewed

CVE-2024-7592 was published Aug 19, 2024

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the latest version of... High Unreviewed

CVE-2024-6038 was published Jun 27, 2024

kubeflow/kubeflow is vulnerable to a Regular Expression Denial of Service (ReDoS) attack due to... High Unreviewed

CVE-2024-5552 was published Jun 6, 2024

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary... High Unreviewed

CVE-2024-4148 was published Jun 1, 2024

An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via... High Unreviewed

CVE-2024-28716 was published Apr 30, 2024

Denial of service condition in M-Files Server in versions before 24.4.13592.4 and after 23.11 ... High Unreviewed

CVE-2024-4056 was published Apr 26, 2024

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 before 16... High Unreviewed

CVE-2024-2829 was published Apr 25, 2024

An issue in alanclarke URLite v.3.1.0 allows an attacker to cause a denial of service (DoS) via a... High Unreviewed

CVE-2023-51931 was published Feb 16, 2024

Regular expression Denial-of-Service (ReDoS) exists in multiple add-ons for Mailform Pro CGI 4.3... High Unreviewed

CVE-2023-40599 was published Aug 25, 2023

An issue has been discovered in GitLab CE/EE affecting all versions starting from 9.3 before 16.0... High Unreviewed

CVE-2023-3994 was published Aug 2, 2023

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

36 advisories