Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,897
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,317 advisories

Loading
d3-color vulnerable to ReDoS High
GHSA-36jr-mh4h-2g58 was published for d3-color (npm) Sep 29, 2022
In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c. Moderate Unreviewed
CVE-2019-20176 was published May 24, 2022
Denial of service in sidekiq High
CVE-2022-23837 was published for sidekiq (RubyGems) Jan 27, 2022
Several quadratic complexity bugs may lead to denial of service in Commonmarker Moderate
GHSA-636f-xm5j-pj9m was published for commonmarker (RubyGems) Jan 24, 2023
Plex media server 1.21 and before is vulnerable to ddos reflection attack via plex service. High Unreviewed
CVE-2021-33959 was published Jan 18, 2023
CAMS for HIS Log Server contained in the following Yokogawa Electric products is vulnerable to... High Unreviewed
CVE-2022-22145 was published Mar 12, 2022
In Package Manger, there is a possible permanent denial of service due to resource exhaustion.... Moderate Unreviewed
CVE-2021-39624 was published Mar 17, 2022
Regular Expression Denial-of-Service in npm schema-inspector High
CVE-2021-21267 was published for schema-inspector (npm) Mar 19, 2021
erik-krogh
A denial of service vulnerability exists in the netserver recv_command functionality of reolink... High Unreviewed
CVE-2022-21801 was published Jan 29, 2022
modern-async's `forEachSeries` and `forEachLimit` functions do not limit the number of requests High
CVE-2021-41167 was published for modern-async (npm) Oct 21, 2021
A resource exhaustion issue was addressed with improved input validation. This issue is fixed in... Moderate Unreviewed
CVE-2022-22588 was published Mar 19, 2022
Denial of service in go-ethereum High
CVE-2021-42219 was published for github.com/ethereum/go-ethereum (Go) Mar 18, 2022
In cloud foundry CAPI versions prior to 1.122, a denial-of-service attack in which a developer... Moderate Unreviewed
CVE-2021-22100 was published Mar 26, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting with version 8.10.... Moderate Unreviewed
CVE-2022-0488 was published Mar 29, 2022
In getOffsetBeforeAfter of TextLine.java, there is a possible denial of service due to resource... Moderate Unreviewed
CVE-2021-0993 was published Dec 16, 2021
There is a Resource Management Errors vulnerability in Huawei Smartphone.Successful exploitation... High Unreviewed
CVE-2021-37068 was published Dec 8, 2021
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14... Moderate Unreviewed
CVE-2021-39932 was published Dec 14, 2021
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service,... High Unreviewed
CVE-2021-38951 was published Dec 10, 2021
Unauthenticated users can access sensitive web URLs through GET request, which should be... Moderate Unreviewed
CVE-2021-32503 was published Apr 3, 2022
A denial of service vulnerability when rendering RDoc files in GitLab CE/EE versions 10 to 14.7.7... Moderate Unreviewed
CVE-2022-1185 was published Apr 5, 2022
totolink EX300_v2, ver V4.0.3c.140_B20210429 and A720R ,ver V4.1.5cu.470_B20200911 have an issue... Moderate Unreviewed
CVE-2021-43662 was published Apr 1, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting with 8.15 . It was... Moderate Unreviewed
CVE-2022-0489 was published Apr 3, 2022
A potential DoS vulnerability was discovered in Gitlab CE/EE versions 13.7 before 14.7.7, all... High Unreviewed
CVE-2022-1174 was published Apr 5, 2022
Adding a very large number of tags to a runner in GitLab CE/EE affecting all versions prior to 14... Moderate Unreviewed
CVE-2022-1099 was published Apr 5, 2022
OX App Suite through 7.10.6 has Uncontrolled Resource Consumption via a large location request... Moderate Unreviewed
CVE-2022-37311 was published Dec 26, 2022
ProTip! Advisories are also available from the GraphQL API