Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,626
Erlang
29
GitHub Actions
16
Go
1,698
Maven
4,936
npm
3,466
NuGet
601
pip
2,975
Pub
10
RubyGems
826
Rust
767
Swift
34
Unreviewed advisories
All unreviewed
5,000+

13 advisories

Including trailing white space in HTTP header values in Nodejs 10, 12, and 13 causes bypass of... High Unreviewed
CVE-2019-15606 was published May 24, 2022
HTTP request smuggling in Node.js 10, 12, and 13 causes malicious payload delivery when transfer... High Unreviewed
CVE-2019-15605 was published May 24, 2022
Improper Certificate Validation in Node.js 10, 12, and 13 causes the process to abort when... Moderate Unreviewed
CVE-2019-15604 was published May 24, 2022
An issue was discovered in WSO2 API Manager 2.6.0 before WSO2-CARBON-PATCH-4.4.0-4457. There is... Moderate Unreviewed
CVE-2019-15108 was published May 24, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2019-0625 was published May 13, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2019-0597 was published May 13, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2019-0598 was published May 13, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2019-0596 was published May 13, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2019-0599 was published May 13, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2019-0595 was published May 13, 2022
npm Vulnerable to Global node_modules Binary Overwrite High
CVE-2019-16777 was published for npm (npm) Dec 13, 2019
DanielRuf
npm symlink reference outside of node_modules High
CVE-2019-16776 was published for npm (npm) Dec 13, 2019
DanielRuf
Arbitrary File Write in npm High
CVE-2019-16775 was published for npm (npm) Dec 13, 2019
DanielRuf
ProTip! Advisories are also available from the GraphQL API