Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,179
Erlang
31
GitHub Actions
19
Go
1,982
Maven
5,000+
npm
3,701
NuGet
656
pip
3,323
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

55 advisories

Loading
An issue has been discovered in GitLab CE/EE affecting all versions starting from 6.6 before 15.5... Moderate Unreviewed
CVE-2022-3514 was published Jan 12, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.8 before 15... Moderate Unreviewed
CVE-2022-4131 was published Jan 12, 2023
A vulnerability was found in Kong lua-multipart 0.5.8-1. It has been declared as problematic.... High Unreviewed
CVE-2020-36661 was published Feb 12, 2023
Octobox is software for managing GitHub notifications. Prior to pull request (PR) 2807, a user of... High Unreviewed
CVE-2021-32848 was published Feb 20, 2023
Dell Hybrid Client prior to version 1.8 contains a Regular Expression Denial of Service... Low Unreviewed
CVE-2022-34428 was published Oct 1, 2022
Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An... Moderate Unreviewed
CVE-2022-34402 was published Oct 11, 2022
Apache OFBiz up to version 18.12.05 is vulnerable to Regular Expression Denial of Service (ReDoS)... High Unreviewed
CVE-2022-29158 was published Sep 3, 2022
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and... Critical Unreviewed
CVE-2023-29487 was published Dec 21, 2023
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows... Critical Unreviewed
CVE-2023-29486 was published Dec 21, 2023
An issue has been discovered in GitLab CE/EE affecting all versions from 12.7 prior to 16.6.6, 16... Moderate Unreviewed
CVE-2023-6159 was published Jan 26, 2024
The Markdown parser in Zulip server before 2.0.5 used a regular expression vulnerable to... Moderate Unreviewed
CVE-2019-16215 was published May 24, 2022
A Regular Expression Denial of Service (ReDoS) issue was discovered in Puppet Server 7.9.2... Moderate Unreviewed
CVE-2023-1894 was published May 5, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15... High Unreviewed
CVE-2023-2132 was published Jun 6, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.7 before 15... High Unreviewed
CVE-2023-2198 was published Jun 7, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.0 before 15... High Unreviewed
CVE-2023-2199 was published Jun 7, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.10 before 16.1,... Moderate Unreviewed
CVE-2023-2232 was published Jun 28, 2023
Mailform Pro CGI 4.3.1.2 and earlier allows a remote unauthenticated attacker to cause a denial... High Unreviewed
CVE-2023-32610 was published Jun 29, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.3 before 15... High Unreviewed
CVE-2023-3424 was published Jul 13, 2023
In JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue... High Unreviewed
CVE-2023-39174 was published Jul 25, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.0.8,... High Unreviewed
CVE-2023-0632 was published Aug 2, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 8.14 before 16... High Unreviewed
CVE-2023-3364 was published Aug 2, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 9.3 before 16.0... High Unreviewed
CVE-2023-3994 was published Aug 2, 2023
Regular expression Denial-of-Service (ReDoS) exists in multiple add-ons for Mailform Pro CGI 4.3... High Unreviewed
CVE-2023-40599 was published Aug 25, 2023
Void Tools Everything lower than v1.4.1.1022 was discovered to contain a Regular Expression... Moderate Unreviewed
CVE-2023-27704 was published Apr 12, 2023
kubeflow/kubeflow is vulnerable to a Regular Expression Denial of Service (ReDoS) attack due to... High Unreviewed
CVE-2024-5552 was published Jun 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database