Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,897
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,532 advisories

Loading
Uncontrolled Resource Consumption in node High Unreviewed
CVE-2020-8277 was published Apr 14, 2021
Regular expression denial of service in Rapid7 Metasploit High Unreviewed
CVE-2019-5645 was published May 5, 2021
Dell Networking OS10, versions 10.4.3.x, 10.5.0.x, 10.5.1.x & 10.5.2.x, contain an uncontrolled... Moderate Unreviewed
CVE-2021-36310 was published Nov 21, 2021
The Reviews Plus WordPress plugin before 1.2.14 does not validate the submitted rating, allowing... Moderate Unreviewed
CVE-2021-24894 was published Nov 24, 2021
Insufficient Input Validation in Web Applications operating on Business-DNA Solutions GmbH’s... Moderate Unreviewed
CVE-2021-42120 was published Dec 1, 2021
Uncontrolled Resource Consumption vulnerability in MELSEC iQ-R Series R00/01/02CPU Firmware... High Unreviewed
CVE-2021-20609 was published Dec 2, 2021
There is a Resource Management Errors vulnerability in Huawei Smartphone.Successful exploitation... High Unreviewed
CVE-2021-37068 was published Dec 8, 2021
There is a Uncontrolled Resource Consumption vulnerability in Huawei Smartphone.Successful... High Unreviewed
CVE-2021-37061 was published Dec 8, 2021
A vulnerability found in UniFi Switch firmware Version 5.43.35 and earlier allows a malicious... Moderate Unreviewed
CVE-2021-44527 was published Dec 8, 2021
An uncontrolled resource consumption vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22... High Unreviewed
CVE-2021-22956 was published Dec 8, 2021
A unauthenticated denial of service vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22... High Unreviewed
CVE-2021-22955 was published Dec 8, 2021
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular... High Unreviewed
CVE-2021-44686 was published Dec 8, 2021
A uncontrolled resource consumption in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and... High Unreviewed
CVE-2021-41014 was published Dec 9, 2021
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a denial of service,... High Unreviewed
CVE-2021-38951 was published Dec 10, 2021
An uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions... Moderate Unreviewed
CVE-2021-39939 was published Dec 14, 2021
A vulnerable regular expression pattern in GitLab CE/EE since version 8.15 before 14.3.6, all... Moderate Unreviewed
CVE-2021-39938 was published Dec 14, 2021
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14... Moderate Unreviewed
CVE-2021-39932 was published Dec 14, 2021
In getOffsetBeforeAfter of TextLine.java, there is a possible denial of service due to resource... Moderate Unreviewed
CVE-2021-0993 was published Dec 16, 2021
Windows Hyper-V Denial of Service Vulnerability Moderate Unreviewed
CVE-2021-43246 was published Dec 16, 2021
SymCrypt Denial of Service Vulnerability High Unreviewed
CVE-2021-43228 was published Dec 16, 2021
DirectX Graphics Kernel File Denial of Service Vulnerability High Unreviewed
CVE-2021-43219 was published Dec 16, 2021
A flaw was found in the hivex library. This flaw allows an attacker to input a specially crafted... Moderate Unreviewed
CVE-2021-3622 was published Dec 24, 2021
The Stars Rating WordPress plugin before 3.5.1 does not validate the submitted rating, allowing... High Unreviewed
CVE-2021-24893 was published Jan 4, 2022
Improper validation of LLM utility timers availability can lead to denial of service in... Moderate Unreviewed
CVE-2021-30348 was published Jan 4, 2022
In libming 0.4.8, a memory exhaustion vulnerability exist in the function cws2fws in util/main.c.... Moderate Unreviewed
CVE-2021-44590 was published Jan 7, 2022
ProTip! Advisories are also available from the GraphQL API