GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
270 advisories
Filter by severity
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows...
Critical
Unreviewed
CVE-2023-29486
was published
Dec 21, 2023
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and...
Critical
Unreviewed
CVE-2023-29487
was published
Dec 21, 2023
Sentry's Astro SDK vulnerable to ReDoS
High
CVE-2023-50249
was published
for
@sentry/astro
(npm)
Dec 18, 2023
@adobe/css-tools Improper Input Validation and Inefficient Regular Expression Complexity
Moderate
CVE-2023-48631
was published
for
@adobe/css-tools
(npm)
Nov 30, 2023
Inefficient Regular Expression Complexity in git-urls
High
CVE-2023-46402
was published
for
github.com/whilp/git-urls
(Go)
Nov 18, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.3 before 16...
Moderate
Unreviewed
CVE-2023-3909
was published
Nov 6, 2023
Inefficient Regular Expression Complexity in node-email-check
High
CVE-2023-39619
was published
for
node-email-check
(npm)
Oct 25, 2023
TorBot vulnerable to Inefficient Regular Expression Complexity in validate_link
Moderate
CVE-2023-45813
was published
for
torbot
(pip)
Oct 19, 2023
Zod denial of service vulnerability during email validation
High
GHSA-mvrp-3cvx-c325
was published
for
express-zod-api
(npm)
Oct 4, 2023
An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior...
Low
Unreviewed
CVE-2023-3906
was published
Sep 29, 2023
Chaijs/get-func-name vulnerable to ReDoS
High
CVE-2023-43646
was published
for
get-func-name
(npm)
Sep 27, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5,...
Moderate
Unreviewed
CVE-2023-3205
was published
Sep 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5,...
Moderate
Unreviewed
CVE-2023-3210
was published
Sep 1, 2023
@adobe/css-tools Regular Expression Denial of Service (ReDOS) while Parsing CSS
Moderate
CVE-2023-26364
was published
for
@adobe/css-tools
(npm)
Aug 29, 2023
MathJax Regular expression Denial of Service (ReDoS)
High
CVE-2023-39663
was published
for
mathjax
(npm)
Aug 29, 2023
Regular expression Denial-of-Service (ReDoS) exists in multiple add-ons for Mailform Pro CGI 4.3...
High
Unreviewed
CVE-2023-40599
was published
Aug 25, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 9.3 before 16.0...
High
Unreviewed
CVE-2023-3994
was published
Aug 2, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.0.8,...
High
Unreviewed
CVE-2023-0632
was published
Aug 2, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14 before 16...
High
Unreviewed
CVE-2023-3364
was published
Aug 2, 2023
In JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue...
High
Unreviewed
CVE-2023-39174
was published
Jul 25, 2023
Issue summary: Checking excessively long DH keys or parameters may be very slow.
Impact summary:...
Moderate
Unreviewed
CVE-2023-3446
was published
Jul 19, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.3 before 15...
High
Unreviewed
CVE-2023-3424
was published
Jul 13, 2023
Apache Airflow Improper Input Validation vulnerability
Moderate
CVE-2023-36543
was published
for
apache-airflow
(pip)
Jul 12, 2023
is_js vulnerable to Regular Expression Denial of Service
High
CVE-2020-26302
was published
for
is_js
(npm)
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API