GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

4,940 advisories

High

CVE-2017-15720 was published for apache-airflow (pip) Jan 25, 2019

High

CVE-2019-0200 was published for org.apache.qpid:apache-qpid-broker-j (Maven) Mar 7, 2019

High

CVE-2019-6690 was published for python-gnupg (pip) Mar 25, 2019

High

CVE-2019-11069 was published for sequelize (npm) Apr 11, 2019

High

CVE-2015-1326 was published for python-dbusmock (pip) Apr 23, 2019

High

CVE-2018-7577 was published for tensorflow (pip) Apr 30, 2019

High

CVE-2018-20835 was published for tar-fs (npm) May 1, 2019

High

CVE-2018-17201 was published for org.apache.sanselan:sanselan (Maven) May 14, 2019

High

CVE-2019-10742 was published for axios (npm) May 29, 2019

High

CVE-2018-20857 was published for samlr (RubyGems) Jul 31, 2019

High

CVE-2019-10745 was published for assign-deep (npm) Aug 21, 2019

High

CVE-2019-10199 was published for org.keycloak:keycloak-core (Maven) Sep 23, 2019

High

CVE-2019-17592 was published for csv-parse (npm) Oct 15, 2019

High

CVE-2019-10768 was published for angular (npm) Nov 20, 2019

High

CVE-2019-18888 was published for symfony/http-foundation (Composer) Dec 2, 2019

High

CVE-2019-17555 was published for org.apache.olingo:odata-client-core (Maven) Feb 4, 2020

High

CVE-2019-17558 was published for org.apache.solr:solr-core (Maven) Feb 12, 2020

High

CVE-2019-10790 was published for taffy (npm) Feb 19, 2020

High

CVE-2020-10204 was published for org.sonatype.nexus:nexus-core (Maven) Apr 14, 2020

High

CVE-2017-1000048 was published for qs (npm) Apr 30, 2020

High

CVE-2014-0114 was published for commons-beanutils:commons-beanutils (Maven) Jun 10, 2020

High

CVE-2020-8184 was published for rack (RubyGems) Jun 24, 2020

High

CVE-2015-2156 was published for io.netty:netty (Maven) Jun 30, 2020

High

CVE-2017-7957 was published for com.thoughtworks.xstream:xstream (Maven) Jun 30, 2020

High

CVE-2018-21036 was published for sails-hook-sockets (npm) Jul 24, 2020

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,940 advisories

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,940 advisories

Uh oh!