GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
3 advisories
Duplicate Advisory: Authentication Bypass by CSRF Weakness
Critical
GHSA-gpqc-4pp7-5954
was published
for
spree_auth_devise
(RubyGems)
Nov 18, 2021
•
withdrawn
Withdrawn Advisory: Improper Restriction of XML External Entity Reference in Apache ActiveMQ
Critical
CVE-2015-3208
was published
for
org.apache.activemq:activemq-client
(Maven)
May 14, 2022
•
withdrawn
Duplicate Advisory: Bundled libwebp in Pillow vulnerable
High
GHSA-56pw-mpj4-fxww
was published
for
pillow
(pip)
Oct 5, 2023
•
withdrawn
ProTip!
Advisories are also available from the
GraphQL API