GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
42 advisories
Filter by severity
The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Denial of...
High
Unreviewed
CVE-2024-0842
was published
Feb 9, 2024
In Eclipse Mosquito before and including 2.0.5, establishing a connection to the mosquitto server...
High
Unreviewed
CVE-2023-5632
was published
Oct 18, 2023
In ASUS RT-AX3000, ZenWiFi AX (XT8), RT-AX88U, and other ASUS routers with firmware < 3.0.0.4.386...
High
Unreviewed
CVE-2021-3128
was published
May 24, 2022
In TP-Link TL-XDR3230 < 1.0.12, TL-XDR1850 < 1.0.9, TL-XDR1860 < 1.0.14, TL-XDR3250 < 1.0.2, TL...
High
Unreviewed
CVE-2021-3125
was published
May 24, 2022
In Gargoyle OS 1.12.0, when IPv6 is used, a routing loop can occur that generates excessive...
High
Unreviewed
CVE-2021-23270
was published
May 24, 2022
srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service (CPU...
High
Unreviewed
CVE-2020-35573
was published
May 24, 2022
Java Facebook Thrift servers would not error upon receiving messages with containers of fields of...
High
Unreviewed
CVE-2019-3559
was published
May 24, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop...
High
Unreviewed
CVE-2018-9261
was published
May 13, 2022
The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9256
was published
May 13, 2022
The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9257
was published
May 13, 2022
The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9254
was published
May 13, 2022
The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9253
was published
May 13, 2022
The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9255
was published
May 13, 2022
In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack of an EOF (End of File)...
High
Unreviewed
CVE-2017-14222
was published
May 13, 2022
In FFmpeg 3.3.3, a DoS in asf_read_marker() due to lack of an EOF (End of File) check might cause...
High
Unreviewed
CVE-2017-14057
was published
May 13, 2022
In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF check might cause huge CPU and...
High
Unreviewed
CVE-2017-14059
was published
May 13, 2022
In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2_read_header() due to lack of an EOF (End of...
High
Unreviewed
CVE-2017-14056
was published
May 13, 2022
In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mv_read_header() due to lack of an EOF (End of...
High
Unreviewed
CVE-2017-14055
was published
May 13, 2022
In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivr_read_header() due to lack of an EOF (End of...
High
Unreviewed
CVE-2017-14054
was published
May 13, 2022
ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c.
High
Unreviewed
CVE-2017-12587
was published
May 13, 2022
The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a...
High
Unreviewed
CVE-2017-11549
was published
May 13, 2022
The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6...
High
Unreviewed
CVE-2017-11505
was published
May 13, 2022
In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. This was...
High
Unreviewed
CVE-2017-11409
was published
May 13, 2022
The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability...
High
Unreviewed
CVE-2017-11188
was published
May 13, 2022
A denial of service vulnerability in the Android media framework (libstagefright). Product:...
High
Unreviewed
CVE-2017-0775
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API