GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

113 advisories

Critical

CVE-2020-8159 was published for actionpack-page_caching (RubyGems) May 13, 2020

Critical

CVE-2020-36599 was published for omniauth (RubyGems) Aug 19, 2022

Critical

CVE-2022-33127 was published for diffy (RubyGems) Jun 24, 2022

Critical

CVE-2021-33473 was published for dragonfly (RubyGems) Jun 3, 2022

Critical

CVE-2017-0889 was published for paperclip (RubyGems) Jan 22, 2018

Critical

CVE-2016-10194 was published for festivaltts4r (RubyGems) Oct 24, 2017

Critical

CVE-2022-1812 was published for publify_core (RubyGems) Jan 14, 2023

Critical

CVE-2014-0156 was published for awesome_spawn (RubyGems) Jul 1, 2022

Critical

CVE-2015-2784 was published for papercrop (RubyGems) May 24, 2022

Critical

CVE-2023-0299 was published for publify_core (RubyGems) Jan 14, 2023

Critical

CVE-2018-3779 was published for active-support (RubyGems) Aug 13, 2018

Critical

GHSA-5629-8855-gf4g was published for solidus_core (RubyGems) Nov 18, 2021

Critical

GHSA-q2hm-gx3f-h63q was published for lita-coin (RubyGems) Feb 23, 2021 • withdrawn

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

113 advisories

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

113 advisories

Uh oh!