GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 18,143
Composer 3,412
Erlang 28
GitHub Actions 16
Go 1,650
Maven 4,914
npm 3,437
NuGet 594
pip 2,682
Pub 10
RubyGems 822
Rust 760
Swift 34

Unreviewed advisories

All unreviewed 214,359

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

5 advisories

Filter by severity

Sort by

Least recently updated

Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3... Moderate Unreviewed

CVE-2011-0678 was published May 17, 2022

libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier,... Moderate Unreviewed

CVE-2010-4008 was published May 13, 2022

Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8... High Unreviewed

CVE-2010-4494 was published May 13, 2022

Zeacom Chat Server before 5.1 uses too short a random string for the JSESSIONID value, which... Moderate Unreviewed

CVE-2010-0217 was published May 2, 2022

Apache XML Security For Java vulnerable to authentication bypass by HMAC truncation Moderate

CVE-2009-0217 was published for org.apache.santuario:xmlsec (Maven) May 2, 2022

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5 advisories