Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

56 advisories

Loading
Versions of the package cross-spawn before 7.0.5 are vulnerable to Regular Expression Denial of... High Unreviewed
CVE-2024-21538 was published Nov 8, 2024
In JetBrains YouTrack before 2024.3.47707 potential ReDoS exploit was possible via email header... Moderate Unreviewed
CVE-2024-50574 was published Oct 28, 2024
Validate.js provides a declarative way of validating javascript objects. All versions as of 30... High Unreviewed
CVE-2020-26310 was published Oct 26, 2024
HTML2Markdown is a Javascript implementation for converting HTML to Markdown text. All available... High Unreviewed
CVE-2020-26307 was published Oct 26, 2024
Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows DoS/ReDos via email.... High Unreviewed
CVE-2024-48938 was published Oct 11, 2024
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary:... Moderate Unreviewed
CVE-2023-3446 was published Jul 19, 2023
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions... Moderate Unreviewed
CVE-2023-6502 was published May 23, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 prior to... Moderate Unreviewed
CVE-2023-6682 was published May 14, 2024
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5,... Moderate Unreviewed
CVE-2023-3205 was published Sep 1, 2023
An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior... Low Unreviewed
CVE-2023-3906 was published Sep 29, 2023
An issue has been discovered in GitLab EE affecting all versions before 16.8.6, all versions... Moderate Unreviewed
CVE-2023-6678 was published Apr 12, 2024
A denial of service vulnerability was identified in GitLab CE/EE, versions 16.7.7 prior to 16.8.6... Moderate Unreviewed
CVE-2023-6489 was published Apr 12, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 before 16... High Unreviewed
CVE-2024-2829 was published Apr 25, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.11 prior to... Moderate Unreviewed
CVE-2023-6688 was published May 14, 2024
An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.7, all versions... Moderate Unreviewed
CVE-2024-2651 was published May 14, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 11.3 before 16.6.7... Moderate Unreviewed
CVE-2023-6736 was published Feb 8, 2024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.3 before 16... Moderate Unreviewed
CVE-2023-3909 was published Nov 6, 2023
An issue has been discovered in GitLab affecting all versions starting from 15.11 before 16.1.5,... Moderate Unreviewed
CVE-2023-3210 was published Sep 1, 2023
An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7... High Unreviewed
CVE-2024-8124 was published Sep 12, 2024
There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard... High Unreviewed
CVE-2024-7592 was published Aug 19, 2024
There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed... High Unreviewed
CVE-2024-6232 was published Sep 3, 2024
A vulnerability has been found in Secure Systems Engineering Connaisseur up to 3.3.0 and... Low Unreviewed
CVE-2023-7279 was published Sep 2, 2024
An issue was discovered in GitLab CE/EE affecting all versions starting from 9.2 prior to 16.11.5... Moderate Unreviewed
CVE-2024-1493 was published Jun 27, 2024
Denial of service condition in M-Files Server in versions before 24.4.13592.4 and after 23.11 ... High Unreviewed
CVE-2024-4056 was published Apr 26, 2024
ReDoS flaw in RefMatcher when matching branch names using wildcards in GitLab EE/CE affecting all... Moderate Unreviewed
CVE-2024-2800 was published Aug 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database