Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,426 advisories

Loading
A vulnerability, which was classified as problematic, was found in JoeyBling bootplus up to... Moderate Unreviewed
CVE-2025-0704 was published Jan 24, 2025
Apache Wicket: An attacker can intentionally trigger a memory leak Critical
CVE-2024-53299 was published for org.apache.wicket:wicket-core (Maven) Jan 23, 2025
Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loop Moderate
CVE-2024-10846 was published for github.com/compose-spec/compose-go/v2 (Go) Jan 21, 2025
ahollmann idsulik
thaJeztah glours gbrindisi
Apache CXF: Denial of Service vulnerability with temporary files Moderate
CVE-2025-23184 was published for org.apache.cxf:cxf-core (Maven) Jan 21, 2025
Windows upnphost.dll Denial of Service Vulnerability High Unreviewed
CVE-2025-21389 was published Jan 14, 2025
Windows Remote Desktop Services Denial of Service Vulnerability High Unreviewed
CVE-2025-21330 was published Jan 14, 2025
Windows upnphost.dll Denial of Service Vulnerability High Unreviewed
CVE-2025-21300 was published Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability High Unreviewed
CVE-2025-21289 was published Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability High Unreviewed
CVE-2025-21290 was published Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability High Unreviewed
CVE-2025-21270 was published Jan 14, 2025
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability High Unreviewed
CVE-2025-21251 was published Jan 14, 2025
Windows Kerberos Denial of Service Vulnerability High Unreviewed
CVE-2025-21218 was published Jan 14, 2025
IP Helper Denial of Service Vulnerability High Unreviewed
CVE-2025-21231 was published Jan 14, 2025
Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability High Unreviewed
CVE-2025-21207 was published Jan 14, 2025
Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource... Moderate Unreviewed
CVE-2024-47239 was published Jan 8, 2025
go-git clients vulnerable to DoS via maliciously crafted Git server replies High
CVE-2025-21614 was published for github.com/go-git/go-git (Go) Jan 6, 2025
bdilalu
WhoDB Allows Unbounded Memory Consumption in Authentication Middleware Can Lead to Denial of Service High
GHSA-5pf6-cq2v-23ww was published for github.com/clidey/whodb/core (Go) Dec 19, 2024
thevilledev
An uncontrolled resource consumption vulnerability has been reported to affect several QNAP... Moderate Unreviewed
CVE-2022-27600 was published Dec 19, 2024
An incomplete fix for ose-olm-catalogd-container was issued for the Rapid Reset Vulnerability ... Moderate Unreviewed
CVE-2024-12698 was published Dec 18, 2024
Apache Tomcat Uncontrolled Resource Consumption vulnerability Moderate
CVE-2024-54677 was published for org.apache.tomcat:tomcat-catalina (Maven) Dec 17, 2024
The Calculated Fields Form plugin for WordPress is vulnerable to Denial of Service in all... Moderate Unreviewed
CVE-2024-12601 was published Dec 17, 2024
ASA-2024-0012, ASA-2024-0013: CosmosSDK: Transaction decoding may result in a stack overflow or resource exhaustion High
GHSA-8wcc-m6j2-qxvm was published for cosmossdk.io/x/tx (Go) Dec 16, 2024
The Minify HTML plugin for WordPress is vulnerable to Regular Expression Denial of Service (ReDoS... Moderate Unreviewed
CVE-2024-12579 was published Dec 13, 2024
Uncontrolled Resource Consumption vulnerability in PlexTrac allows WebSocket DoS.This issue... High Unreviewed
CVE-2024-11835 was published Dec 13, 2024
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability High Unreviewed
CVE-2024-49096 was published Dec 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database