GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,730
Composer 5,030
Erlang 39
GitHub Actions 38
Go 2,670
Maven 6,116
npm 4,296
NuGet 760
pip 4,075
Pub 12
RubyGems 957
Rust 1,058
Swift 45

Unreviewed advisories

All unreviewed 277,922

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

430 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Allocation of Resources Without Limits or Throttling vulnerability in Shelly Pro 4PM (before v1.6... High Unreviewed

CVE-2025-11243 was published Nov 19, 2025

A flaw was found in libsoup. The SoupWebsocketConnection may accept a large WebSocket message,... High Unreviewed

CVE-2025-32049 was published Apr 3, 2025

EasyFlow GP developed by Digiwin has a Denial of service vulnerability, allowing unauthenticated... High Unreviewed

CVE-2025-13165 was published Nov 17, 2025

HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to... High Unreviewed

CVE-2024-27316 was published Apr 4, 2024

A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that... High Unreviewed

CVE-2021-41840 was published Feb 10, 2022

Certain DNSSEC aspects of the DNS protocol (in RFC 4035 and related RFCs) allow remote attackers... High Unreviewed

CVE-2023-50387 was published Feb 14, 2024

Very large headers can cause resource exhaustion when parsing message. The message-parser... High Unreviewed

CVE-2024-23185 was published Sep 10, 2024

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). ... High Unreviewed

CVE-2025-21521 was published Jan 21, 2025

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.0 before 18.3.5, 18... High Unreviewed

CVE-2025-11447 was published Oct 27, 2025

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.3.5,... High Unreviewed

CVE-2025-10497 was published Oct 27, 2025

A flaw was found in Undertow. When an AJP request is sent that exceeds the max-header-size... High Unreviewed

CVE-2023-5379 was published Dec 13, 2023

Multiple vulnerabilities in the Distance Vector Multicast Routing Protocol (DVMRP) feature of... High Unreviewed

CVE-2020-3569 was published May 24, 2022

A vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR... High Unreviewed

CVE-2020-3566 was published May 24, 2022

A lack of rate limiting in the component /Home/UploadStreamDocument of SigningHub v8.6.8 allows... High Unreviewed

CVE-2025-56223 was published Oct 20, 2025

A vulnerability in parisneo/lollms-webui v13 arises from the server's handling of multipart... High Unreviewed

CVE-2025-1451 was published Mar 20, 2025

A vulnerability in danswer-ai/danswer v0.3.94 allows an attacker to cause a Denial of Service ... High Unreviewed

CVE-2024-8028 was published Mar 20, 2025

SuperAGI version v0.0.14 is vulnerable to an unauthenticated Denial of Service (DoS) attack. The... High Unreviewed

CVE-2024-9437 was published Mar 20, 2025

A vulnerability in danswer-ai/danswer version 0.9.0 allows for denial of service through memory... High Unreviewed

CVE-2025-0182 was published Mar 20, 2025

In danny-avila/librechat version git 0c2a583, there is an improper input validation vulnerability... High Unreviewed

CVE-2024-11171 was published Mar 20, 2025

A vulnerability in imartinez/privategpt version 0.5.0 allows for a Denial of Service (DOS) attack... High Unreviewed

CVE-2024-8018 was published Mar 20, 2025

automatic1111/stable-diffusion-webui version 1.10.0 contains a vulnerability where the server... High Unreviewed

CVE-2024-10935 was published Mar 20, 2025

Realchar version v0.0.4 is vulnerable to an unauthenticated denial of service (DoS) attack. The... High Unreviewed

CVE-2024-10051 was published Mar 20, 2025

A vulnerability in haotian-liu/llava v1.2.0 allows an attacker to cause a Denial of Service (DoS)... High Unreviewed

CVE-2024-10225 was published Mar 20, 2025

A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240410 allows an attacker to create... High Unreviewed

CVE-2024-6037 was published Jul 11, 2024

When the Allowed IP Addresses feature is configured on the F5OS-C partition control plane,... High Unreviewed

CVE-2025-59778 was published Oct 15, 2025

Previous1…18 Next

Previous 1 2 3 4 5 … 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

430 advisories