GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
56 advisories
Filter by severity
In JetBrains YouTrack before 2024.3.52635 potential ReDoS was possible due to vulnerable RegExp...
Moderate
Unreviewed
CVE-2024-54157
was published
Dec 4, 2024
In JetBrains YouTrack before 2024.3.47707 potential ReDoS exploit was possible via email header...
Moderate
Unreviewed
CVE-2024-50574
was published
Oct 28, 2024
HTML2Markdown is a Javascript implementation for converting HTML to Markdown text. All available...
High
Unreviewed
CVE-2020-26307
was published
Oct 26, 2024
Validate.js provides a declarative way of validating javascript objects. All versions as of 30...
High
Unreviewed
CVE-2020-26310
was published
Oct 26, 2024
Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows DoS/ReDos via email....
High
Unreviewed
CVE-2024-48938
was published
Oct 11, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7...
High
Unreviewed
CVE-2024-8124
was published
Sep 12, 2024
There is a MEDIUM severity vulnerability affecting CPython.
Regular expressions that allowed...
High
Unreviewed
CVE-2024-6232
was published
Sep 3, 2024
A vulnerability has been found in Secure Systems Engineering Connaisseur up to 3.3.0 and...
Low
Unreviewed
CVE-2023-7279
was published
Sep 2, 2024
There is a LOW severity vulnerability affecting CPython, specifically the
'http.cookies' standard...
High
Unreviewed
CVE-2024-7592
was published
Aug 19, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 11.10 prior to 17.0...
Moderate
Unreviewed
CVE-2024-3114
was published
Aug 8, 2024
ReDoS flaw in RefMatcher when matching branch names using wildcards in GitLab EE/CE affecting all...
Moderate
Unreviewed
CVE-2024-2800
was published
Aug 8, 2024
The Premium Addons for Elementor plugin for WordPress is vulnerable to Regular Expression Denial...
Low
Unreviewed
CVE-2024-6434
was published
Jul 4, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 9.2 prior to 16.11.5...
Moderate
Unreviewed
CVE-2024-1493
was published
Jun 27, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.4 prior to 16...
Moderate
Unreviewed
CVE-2024-1963
was published
Jun 13, 2024
An issue has been discovered in GitLab CE/EE affecting all versions prior to 16.10.7, starting...
Moderate
Unreviewed
CVE-2024-1736
was published
Jun 13, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.1 prior to...
Moderate
Unreviewed
CVE-2024-1495
was published
Jun 13, 2024
kubeflow/kubeflow is vulnerable to a Regular Expression Denial of Service (ReDoS) attack due to...
High
Unreviewed
CVE-2024-5552
was published
Jun 6, 2024
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions...
Moderate
Unreviewed
CVE-2023-6502
was published
May 23, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.7, all versions...
Moderate
Unreviewed
CVE-2024-2651
was published
May 14, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.11 prior to...
Moderate
Unreviewed
CVE-2023-6688
was published
May 14, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to...
Moderate
Unreviewed
CVE-2023-6682
was published
May 14, 2024
An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via...
High
Unreviewed
CVE-2024-28716
was published
Apr 30, 2024
Denial of service condition in M-Files Server in versions before 24.4.13592.4 and after 23.11 ...
High
Unreviewed
CVE-2024-4056
was published
Apr 26, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 before 16...
High
Unreviewed
CVE-2024-2829
was published
Apr 25, 2024
A denial of service vulnerability was identified in GitLab CE/EE, versions 16.7.7 prior to 16.8.6...
Moderate
Unreviewed
CVE-2023-6489
was published
Apr 12, 2024
ProTip!
Advisories are also available from the
GraphQL API