Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,386
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,480
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

830 advisories

Loading
The secure OS module has configuration defects. Successful exploitation of this vulnerability may... High Unreviewed
CVE-2022-48351 was published Mar 28, 2023
A lack of rate limiting in the 'Forgot Password', 'Email Settings' feature of PHPJabbers... High Unreviewed
CVE-2023-51314 was published Feb 20, 2025
A lack of rate limiting in the 'Forgot Password' feature of PHPJabbers Bus Reservation System v1... High Unreviewed
CVE-2023-51316 was published Feb 20, 2025
A lack of rate limiting in the 'Forgot Password', 'Email Settings' feature of PHPJabbers Event... High Unreviewed
CVE-2023-51293 was published Feb 19, 2025
Product: AndroidVersions: Android kernelAndroid ID: A-229255400References: N/A High Unreviewed
CVE-2023-21061 was published Mar 24, 2023
A lack of rate limiting in the "Login Section, Forgot Email" feature of PHPJabbers Hotel Booking... High Unreviewed
CVE-2023-51301 was published Feb 19, 2025
The Twitter Recommendation Algorithm through ec83d01 allows attackers to cause a denial of... High Unreviewed
CVE-2023-29218 was published Apr 3, 2023
An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block... High Unreviewed
CVE-2023-43622 was published Oct 23, 2023
Zoho ManageEngine ADSelfService Plus before 6218 allows anyone to conduct a Denial-of-Service... High Unreviewed
CVE-2023-28342 was published Apr 5, 2023
Multipart form parsing can consume large amounts of CPU and memory when processing form inputs... High Unreviewed
CVE-2023-24536 was published Apr 6, 2023
HTTP and MIME header parsing can allocate large amounts of memory, even when parsing small inputs... High Unreviewed
CVE-2023-24534 was published Apr 6, 2023
An issue found in DUALSPACE Super Secuirty v.2.3.7 allows an attacker to cause a denial of... High Unreviewed
CVE-2023-27191 was published Apr 11, 2023
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability High Unreviewed
CVE-2025-21181 was published Feb 11, 2025
Windows Active Directory Domain Services API Denial of Service Vulnerability High Unreviewed
CVE-2025-21351 was published Feb 11, 2025
A denial of service condition exists in the Prometheus server bundled with GitLab affecting all... High Unreviewed
CVE-2023-1733 was published Apr 5, 2023
An issue found in POWERAMP 925-bundle-play and Poweramp 954-uni allows a remote attacker to cause... High Unreviewed
CVE-2023-27643 was published Apr 14, 2023
TiKV 6.1.2 allows remote attackers to cause a denial of service (fatal error) upon an attempt to... High Unreviewed
CVE-2023-30635 was published Apr 14, 2023
A PAN-OS URL filtering policy misconfiguration could allow a network-based attacker to conduct... High Unreviewed
CVE-2022-0028 was published Aug 11, 2022
On D-Link DIR-819 Firmware Version 1.06 Hardware Version A1 devices, it is possible to trigger a... High Unreviewed
CVE-2022-40946 was published Apr 16, 2023
When a BIG-IP message routing profile is configured on a virtual server, undisclosed traffic can... High Unreviewed
CVE-2025-20058 was published Feb 5, 2025
When Client or Server SSL profiles are configured on a Virtual Server, or DNSSEC signing... High Unreviewed
CVE-2025-21087 was published Feb 5, 2025
Starting in Python 3.12.0, the asyncio._SelectorSocketTransport.writelines() method would not ... High Unreviewed
CVE-2024-12254 was published Dec 6, 2024
There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard... High Unreviewed
CVE-2024-7592 was published Aug 19, 2024
Trustwave ModSecurity 3.0.5 through 3.0.8 before 3.0.9 allows a denial of service (worker crash... High Unreviewed
CVE-2023-28882 was published Apr 28, 2023
A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary... High Unreviewed
CVE-2024-4148 was published Jun 1, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database