GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,140
Maven
5,000+
npm
3,800
NuGet
687
pip
3,478
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
362 advisories
Filter by severity
An issue in aedes v0.51.2 allows attackers to cause a Denial of Service(DoS) via a crafted request.
High
Unreviewed
CVE-2024-48080
was published
Dec 3, 2024
Some products have the double fetch vulnerability. Successful exploitation of this vulnerability...
High
Unreviewed
CVE-2022-48357
was published
Mar 28, 2023
Monero through 0.18.3.4 before ec74ff4 does not have response limits on HTTP server connections.
High
Unreviewed
CVE-2025-26819
was published
Feb 15, 2025
An issue in the profile image upload function of LearnDash v6.7.1 allows attackers to cause a...
High
Unreviewed
CVE-2024-56940
was published
Feb 13, 2025
Mercedes Benz head-unit NTG 6 contains functions to import or export profile settings over USB....
High
Unreviewed
CVE-2023-34397
was published
Feb 14, 2025
CWE-770: Allocation of Resources Without Limits or Throttling vulnerability exists that could...
High
Unreviewed
CVE-2025-1059
was published
Feb 13, 2025
Multipart form parsing can consume large amounts of CPU and memory when processing form inputs...
High
Unreviewed
CVE-2023-24536
was published
Apr 6, 2023
An issue found in DUALSPACE Super Secuirty v.2.3.7 allows an attacker to cause a denial of...
High
Unreviewed
CVE-2023-27191
was published
Apr 11, 2023
An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before...
High
Unreviewed
CVE-2018-15472
was published
Apr 16, 2023
An issue found in POWERAMP 925-bundle-play and Poweramp 954-uni allows a remote attacker to cause...
High
Unreviewed
CVE-2023-27643
was published
Apr 14, 2023
An issue found in WHOv.1.0.28, v.1.0.30, v.1.0.32 allows an attacker to cause a denial of service...
High
Unreviewed
CVE-2023-27653
was published
Apr 14, 2023
Clients using DNS-over-HTTPS (DoH) can exhaust a DNS resolver's CPU and/or memory by flooding it...
High
Unreviewed
CVE-2024-12705
was published
Jan 30, 2025
TiKV 6.1.2 allows remote attackers to cause a denial of service (fatal error, with RpcStatus...
High
Unreviewed
CVE-2023-30636
was published
Apr 14, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.7 prior to...
High
Unreviewed
CVE-2024-2878
was published
Feb 5, 2025
An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the...
High
Unreviewed
CVE-2024-57519
was published
Jan 29, 2025
When BIG-IP AFM is provisioned with IPS module enabled and protocol inspection profile is...
High
Unreviewed
CVE-2025-24312
was published
Feb 5, 2025
Sengled Dimmer Switch V0.0.9 contains a denial of service (DOS) vulnerability, which allows a...
High
Unreviewed
CVE-2023-29779
was published
Apr 25, 2023
Starting in Python 3.12.0, the asyncio._SelectorSocketTransport.writelines()
method would not ...
High
Unreviewed
CVE-2024-12254
was published
Dec 6, 2024
An issue was discovered in ebankIT before 7. A Denial-of-Service attack is possible through the...
High
Unreviewed
CVE-2023-30455
was published
Apr 28, 2023
Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash...
High
Unreviewed
CVE-2023-28882
was published
Apr 28, 2023
IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS could allow a remote attacker to cause a denial of...
High
Unreviewed
CVE-2023-26285
was published
May 5, 2023
In AXESS ACS (Auto Configuration Server) through 5.2.0, unsanitized user input in the TR069 API...
High
Unreviewed
CVE-2024-56316
was published
Jan 28, 2025
An allocation-size-too-big bug in the component /imagebuf.cpp of OpenImageIO v3.1.0.0dev may...
High
Unreviewed
CVE-2024-55195
was published
Jan 24, 2025
A vulnerability has been identified where a maliciously crafted message containing a specific...
High
Unreviewed
CVE-2023-28356
was published
May 12, 2023
In several functions of SnoozeHelper.java, there is a possible way to grant notifications access...
High
Unreviewed
CVE-2023-21110
was published
May 16, 2023
ProTip!
Advisories are also available from the
GraphQL API