GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
443 advisories
Filter by severity
An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper...
High
Unreviewed
CVE-2024-47502
was published
Oct 11, 2024
Starlette Denial of service (DoS) via multipart/form-data
High
CVE-2024-47874
was published
for
starlette
(pip)
Oct 15, 2024
Security Update for the OPC UA .NET Standard Stack
High
GHSA-qm9f-c3v9-wphv
was published
for
OPCFoundation.NetStandard.Opc.Ua
(NuGet)
Oct 18, 2024
A vulnerability in gaizhenbiao/chuanhuchatgpt version 20240628 allows for a Denial of Service ...
High
Unreviewed
CVE-2024-7807
was published
Oct 29, 2024
This vulnerability exists in the Wave 2.0 due to missing rate limiting on OTP requests in an API...
High
Unreviewed
CVE-2024-51557
was published
Nov 4, 2024
An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a...
High
Unreviewed
CVE-2024-48809
was published
Nov 4, 2024
Apache Tomcat Allocation of Resources Without Limits or Throttling vulnerability
High
CVE-2024-38286
was published
for
org.apache.tomcat:tomcat-util
(Maven)
Nov 7, 2024
An issue in Espressif Esp idf v5.3.0 allows attackers to cause a Denial of Service (DoS) via a...
High
Unreviewed
CVE-2024-51428
was published
Nov 7, 2024
A vulnerability in the PROFINET stack implementation of the IndraDrive (all versions) of Bosch...
High
Unreviewed
CVE-2024-48989
was published
Nov 13, 2024
In lunary-ai/lunary version 1.2.7, there is a lack of rate limiting on the forgot password page,...
High
Unreviewed
CVE-2024-3760
was published
Nov 14, 2024
Bitcoin Core before 0.15.0 allows a denial of service (OOM kill of a daemon process) via a flood...
High
Unreviewed
CVE-2024-52916
was published
Nov 18, 2024
Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service (memory...
High
Unreviewed
CVE-2024-52915
was published
Nov 18, 2024
Bitcoin Core before 0.20.0 allows remote attackers to cause a denial of service (infinite loop)...
High
Unreviewed
CVE-2024-52920
was published
Nov 18, 2024
In Bitcoin Core before 0.18.0, a node could be stalled for hours when processing the orphans of a...
High
Unreviewed
CVE-2024-52914
was published
Nov 18, 2024
Bitcoin Core before 24.0.1 allows remote attackers to cause a denial of service (daemon crash)...
High
Unreviewed
CVE-2019-25220
was published
Nov 18, 2024
Multiple Cisco products are affected by a vulnerability in the Ethernet Frame Decoder of the...
High
Unreviewed
CVE-2021-1285
was published
Nov 18, 2024
Litestar allows unbounded resource consumption (DoS vulnerability)
High
CVE-2024-52581
was published
for
litestar
(pip)
Nov 20, 2024
Tornado has an HTTP cookie parsing DoS vulnerability
High
CVE-2024-52804
was published
for
tornado
(pip)
Nov 22, 2024
ProTip!
Advisories are also available from the
GraphQL API