Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,476
Erlang
33
GitHub Actions
24
Go
2,207
Maven
5,000+
npm
3,858
NuGet
696
pip
3,639
Pub
12
RubyGems
913
Rust
918
Swift
38
Unreviewed advisories
All unreviewed
5,000+

16 advisories

Loading
jwt-go allows excessive memory allocation during header parsing High
CVE-2025-30204 was published for github.com/golang-jwt/jwt/v4 (Go) Mar 21, 2025
jub0bs
Possible DoS by memory exhaustion in net-imap Moderate
CVE-2025-25186 was published for net-imap (RubyGems) Feb 10, 2025
manunio
It is possible to construct a zone such that some queries to it will generate responses... High Unreviewed
CVE-2024-11187 was published Jan 30, 2025
body-parser vulnerable to denial of service when url encoding is enabled High
CVE-2024-45590 was published for body-parser (npm) Sep 10, 2024
AdamKorcz UlisesGascon
ctcpip wesleytodd
IBM InfoSphere Information Server could allow an authenticated user to consume file space... Moderate Unreviewed
CVE-2024-40705 was published Aug 15, 2024
IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 could allow a user to cause a denial of service... Moderate Unreviewed
CVE-2024-39743 was published Jul 8, 2024
An issue in The Document Foundation Libreoffice v.7.4.7 allows a remote attacker to cause a... Moderate Unreviewed
CVE-2023-36268 was published Apr 30, 2024
An issue was found in the CPython `zipfile` module affecting versions 3.12.2, 3.11.8, 3.10.13, 3... Moderate Unreviewed
CVE-2024-0450 was published Mar 19, 2024
nGrinder before 3.5.9 allows to set delay without limitation, which could be the cause of Denial... Low Unreviewed
CVE-2024-28214 was published Mar 7, 2024
An unauthenticated  denial of service vulnerability exists in the SMM v1, SMM v2, and FPC... High Unreviewed
CVE-2023-2992 was published Jun 26, 2023
TYPO3 CMS vulnerable to Denial of Service in Page Error Handling Moderate
CVE-2022-23500 was published for typo3/cms (Composer) Dec 13, 2022
Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This... High Unreviewed
CVE-2019-11479 was published May 24, 2022
A vulnerability in the lservnt.exe component of Sentinel License Manager version 8.5.3.35 (fixed... High Unreviewed
CVE-2018-15492 was published May 14, 2022
OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted... High Unreviewed
CVE-2021-38447 was published May 6, 2022
Asymmetric Resource Consumption (Amplification) in Docker containers created by Wings Moderate
CVE-2021-32699 was published for github.com/pterodactyl/wings (Go) Jun 23, 2021
Denial of Service in Page Error Handling Moderate
CVE-2021-21359 was published for typo3/cms (Composer) Mar 23, 2021
derhansen
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database