GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
404 advisories
Filter by severity
.NET Denial of Service Vulnerability
High
CVE-2022-29145
was published
for
Microsoft.AspNetCore.App.Runtime.linux-arm
(NuGet)
Aug 30, 2022
.NET Denial of Service Vulnerability
High
CVE-2022-29117
was published
for
Microsoft.AspNetCore.App.Runtime.linux-arm
(NuGet)
Aug 30, 2022
Incorrect Access Control and Cross Site Scripting in Jellyfin
High
CVE-2022-35909
was published
for
Jellyfin.Common
(NuGet)
Aug 20, 2022
Moment.js vulnerable to Inefficient Regular Expression Complexity
High
CVE-2022-31129
was published
for
Moment.js
(npm)
Jul 6, 2022
Improper Handling of Exceptional Conditions in Newtonsoft.Json
High
CVE-2024-21907
was published
for
Newtonsoft.Json
(NuGet)
Jun 22, 2022
Memory Allocation with Excessive Size Value in OPCFoundation.NetStandard.Opc.Ua.Core
High
CVE-2022-29863
was published
for
OPCFoundation.NetStandard.Opc.Ua.Core
(NuGet)
Jun 17, 2022
Uncontrolled Resource Consumption in OPCFoundation.NetStandard.Opc.Ua.Core
High
CVE-2022-29864
was published
for
OPCFoundation.NetStandard.Opc.Ua.Core
(NuGet)
Jun 17, 2022
Incorrect Implementation of Authentication Algorithm in OPCFoundation.NetStandard.Opc.Ua.Core
High
CVE-2022-29865
was published
for
OPCFoundation.NetStandard.Opc.Ua.Core
(NuGet)
Jun 17, 2022
Uncontrolled Resource Consumption in OPCFoundation.NetStandard.Opc.Ua.Core
High
CVE-2022-29866
was published
for
OPCFoundation.NetStandard.Opc.Ua.Core
(NuGet)
Jun 17, 2022
Security Update for the OPC UA .NET Standard Stack
High
CVE-2022-29862
was published
for
OPCFoundation.NetStandard.Opc.Ua.Core
(NuGet)
Jun 17, 2022
ChakraCore information disclosure vulnerability
High
CVE-2020-0813
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ChakraCore RCE via Out-of-bounds write
High
CVE-2019-1052
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ChakraCore RCE Vulnerability
High
CVE-2019-1024
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ChakraCore RCE via Out-of-bounds write
High
CVE-2019-1051
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ChakraCore RCE via Out-of-bounds write
High
CVE-2019-1002
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
Chakra Scripting Engine and ChakraCore Vulnerable to Memory Corruption
High
CVE-2021-42279
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ASP.NET Core and Visual Studio Denial of Service Vulnerability
High
CVE-2021-1723
was published
for
Microsoft.AspNetCore.App.Runtime.linux-arm
(NuGet)
May 24, 2022
Cookie parsing failure
High
CVE-2020-1045
was published
for
Microsoft.AspNetCore.App
(NuGet)
May 24, 2022
ASP.NET Core Denial of Service Vulnerability
High
CVE-2020-1597
was published
for
Microsoft.AspNetCore.All
(NuGet)
May 24, 2022
.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability
High
CVE-2020-1147
was published
for
Microsoft.NETCore.App
(NuGet)
May 24, 2022
ChakraCore RCE Vulnerability
High
CVE-2020-1073
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ASP.NET Core Denial of Service Vulnerability
High
CVE-2020-1161
was published
for
Microsoft.AspNetCore.App.Runtime.linux-arm
(NuGet)
May 24, 2022
.NET Core & .NET Framework Denial of Service Vulnerability
High
CVE-2020-1108
was published
for
Microsoft.NETCore.App
(NuGet)
May 24, 2022
ChakraCore RCE Vulnerability
High
CVE-2020-1065
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API