GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

84 advisories

Critical

CVE-2024-55875 was published for org.http4k:http4k-format-xml (Maven) Dec 12, 2024

Critical

CVE-2021-3902 was published for dompdf/dompdf (Composer) Nov 15, 2024

Critical

CVE-2024-34102 was published for magento/community-edition (Composer) Jun 13, 2024

Critical

GHSA-8x2v-pcg7-94f4 was published for zendframework/zend-json (Composer) Jun 7, 2024

Critical

GHSA-mhpx-3rv8-wrjm was published for zendframework/zendframework1 (Composer) Jun 7, 2024

Critical

GHSA-f4fj-q6m4-cc52 was published for zendframework/zend-xmlrpc (Composer) Jun 7, 2024

Critical

GHSA-qc7w-4567-84wv was published for zendframework/zendframework (Composer) Jun 7, 2024

Critical

GHSA-j68w-pg49-f6vx was published for symfony/serializer (Composer) May 30, 2024

Critical

CVE-2023-49733 was published for org.apache.cocoon:cocoon (Maven) Nov 30, 2023

Critical

CVE-2023-46502 was published for org.opencrx:opencrx-client (Maven) Oct 31, 2023

Critical

CVE-2018-25082 was published for weixin-python (pip) Mar 21, 2023

Critical

CVE-2014-125087 was published for com.jamesmurty.utils:java-xmlbuilder (Maven) Feb 19, 2023

Critical

CVE-2023-24429 was published for org.jenkins-ci.plugins:semantic-versioning-plugin (Maven) Jan 26, 2023

Critical

CVE-2023-24443 was published for org.jenkins-ci.plugins:TestComplete (Maven) Jan 26, 2023

Critical

CVE-2023-24430 was published for org.jenkins-ci.plugins:semantic-versioning-plugin (Maven) Jan 26, 2023

Critical

CVE-2015-10029 was published for kelvinmo/simplexrd (Composer) Jan 7, 2023

Critical

CVE-2016-15011 was published for be.e_contract.dssp:dssp-client (Maven) Jan 6, 2023

Critical

CVE-2020-36640 was published for org.bonitasoft.connectors:bonita-connector-webservice (Maven) Jan 5, 2023

Critical

CVE-2020-36641 was published for fr.turri:aXMLRPC (Maven) Jan 5, 2023

Critical

CVE-2017-20151 was published for com.itextpdf:itext-rups (Maven) Dec 30, 2022

Critical

CVE-2022-45395 was published for com.thalesgroup.jenkins-ci.plugins:cccc (Maven) Nov 16, 2022

Critical

CVE-2021-46849 was published for pikepdf (pip) Oct 24, 2022 • withdrawn

Critical

CVE-2022-39135 was published for org.apache.calcite:calcite-core (Maven) Sep 12, 2022

Critical

CVE-2015-8031 was published for org.jvnet.hudson.main:hudson-core (Maven) Jul 15, 2022

Critical

CVE-2022-32533 was published for org.apache.portals.jetspeed-2:jetspeed-commons (Maven) Jul 7, 2022

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

84 advisories