GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
91
GitHub Actions
54
Go
4,194
Maven
5,000+
npm
5,000+
NuGet
1,021
pip
5,000+
Pub
13
RubyGems
1,102
Rust
1,422
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
311,448 advisories
Filter by severity
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling')
High
Unreviewed
CVE-2021-23336
was published
Feb 8, 2022
Cross-site Scripting in SOS JobScheduler
Moderate
Unreviewed
CVE-2020-6854
was published
Feb 15, 2022
Inadequate Encryption Strength and Algorithm Downgrade in Wildfly
Moderate
Unreviewed
CVE-2019-14887
was published
Feb 15, 2022
Incorrect Comparison, Permissive List of Allowed Inputs, and Privilege Context Switching Error in PostgreSQL
Critical
Unreviewed
CVE-2020-25696
was published
Feb 15, 2022
Use of a Broken or Risky Cryptographic Algorithm in PostgreSQL
High
Unreviewed
CVE-2020-25694
was published
Feb 15, 2022
Improper Input Validation in yargs-parser
Moderate
Unreviewed
GHSA-ghmj-crg5-xw2j
was published
Feb 15, 2022
Regular expression denial of service in Rapid7 Metasploit
High
Unreviewed
CVE-2019-5645
was published
May 5, 2021
Cross-Site Request Forgery in mm_forum
Moderate
Unreviewed
CVE-2020-15516
was published
Feb 15, 2022
Incorrect Calculation and Use of Insufficiently Random Values in Python
Moderate
Unreviewed
CVE-2020-14422
was published
May 11, 2021
Sensitive Data Exposure in Openshift Container Platform
Moderate
Unreviewed
CVE-2019-10213
was published
May 17, 2021
Information Disclosure in OpenShift Container Platform
Moderate
Unreviewed
CVE-2020-10712
was published
May 25, 2021
Generation of Error Message Containing Sensitive Information in postgresql
Moderate
Unreviewed
CVE-2021-3393
was published
Feb 15, 2022
Out-of-bounds Read and Missing Release of Memory after Effective Lifetime in tar
Moderate
Unreviewed
CVE-2021-20193
was published
May 27, 2021
ProTip!
Advisories are also available from the
GraphQL API