GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
276 advisories
Filter by severity
angular vulnerable to super-linear runtime due to backtracking
High
CVE-2024-21490
was published
for
angular
(Maven)
Feb 10, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 11.3 before 16.6.7...
Moderate
Unreviewed
CVE-2023-6736
was published
Feb 8, 2024
Duplicate Advisory: FastAPI Content-Type Header ReDoS
High
GHSA-qf9m-vfgh-m389
was published
for
fastapi
(pip)
Feb 5, 2024
•
withdrawn
nodemailer ReDoS when trying to send a specially crafted email
Moderate
GHSA-9h6g-pr28-7cqp
was published
for
nodemailer
(npm)
Jan 31, 2024
An issue has been discovered in GitLab CE/EE affecting all versions from 12.7 prior to 16.6.6, 16...
Moderate
Unreviewed
CVE-2023-6159
was published
Jan 26, 2024
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and...
Critical
Unreviewed
CVE-2023-29487
was published
Dec 21, 2023
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows...
Critical
Unreviewed
CVE-2023-29486
was published
Dec 21, 2023
Sentry's Astro SDK vulnerable to ReDoS
High
CVE-2023-50249
was published
for
@sentry/astro
(npm)
Dec 18, 2023
@adobe/css-tools Improper Input Validation and Inefficient Regular Expression Complexity
Moderate
CVE-2023-48631
was published
for
@adobe/css-tools
(npm)
Nov 30, 2023
Inefficient Regular Expression Complexity in git-urls
High
CVE-2023-46402
was published
for
github.com/whilp/git-urls
(Go)
Nov 18, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.3 before 16...
Moderate
Unreviewed
CVE-2023-3909
was published
Nov 6, 2023
Inefficient Regular Expression Complexity in node-email-check
High
CVE-2023-39619
was published
for
node-email-check
(npm)
Oct 25, 2023
TorBot vulnerable to Inefficient Regular Expression Complexity in validate_link
Moderate
CVE-2023-45813
was published
for
torbot
(pip)
Oct 19, 2023
Zod denial of service vulnerability during email validation
High
GHSA-mvrp-3cvx-c325
was published
for
express-zod-api
(npm)
Oct 4, 2023
An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior...
Low
Unreviewed
CVE-2023-3906
was published
Sep 29, 2023
Chaijs/get-func-name vulnerable to ReDoS
High
CVE-2023-43646
was published
for
get-func-name
(npm)
Sep 27, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5,...
Moderate
Unreviewed
CVE-2023-3210
was published
Sep 1, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5,...
Moderate
Unreviewed
CVE-2023-3205
was published
Sep 1, 2023
@adobe/css-tools Regular Expression Denial of Service (ReDOS) while Parsing CSS
Moderate
CVE-2023-26364
was published
for
@adobe/css-tools
(npm)
Aug 29, 2023
MathJax Regular expression Denial of Service (ReDoS)
High
CVE-2023-39663
was published
for
mathjax
(npm)
Aug 29, 2023
Regular expression Denial-of-Service (ReDoS) exists in multiple add-ons for Mailform Pro CGI 4.3...
High
Unreviewed
CVE-2023-40599
was published
Aug 25, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 9.3 before 16.0...
High
Unreviewed
CVE-2023-3994
was published
Aug 2, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.0.8,...
High
Unreviewed
CVE-2023-0632
was published
Aug 2, 2023
ProTip!
Advisories are also available from the
GraphQL API