Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

956 advisories

Loading
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security:... Moderate Unreviewed
CVE-2025-21493 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported... Moderate Unreviewed
CVE-2025-21499 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2025-21500 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2025-21501 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2025-21503 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2025-21504 was published Jan 21, 2025
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web... Moderate Unreviewed
CVE-2025-21509 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2025-21490 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). ... Moderate Unreviewed
CVE-2025-21492 was published Jan 21, 2025
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported... Moderate Unreviewed
CVE-2025-21491 was published Jan 21, 2025
Elasticsearch allocation of resources without limits or throttling leads to crash Moderate
CVE-2024-43709 was published for org.elasticsearch:elasticsearch (Maven) Jan 21, 2025
An allocation of resources without limits or throttling in Kibana can lead to a crash caused by a... Moderate Unreviewed
CVE-2024-52973 was published Jan 21, 2025
IBM TXSeries for Multiplatforms 10.1 could allow a remote attacker to cause a denial of service... High Unreviewed
CVE-2024-41743 was published Jan 19, 2025
IBM TXSeries for Multiplatforms 10.1 is vulnerable to a denial of service, caused by improper... High Unreviewed
CVE-2024-41742 was published Jan 19, 2025
IBM Safer Payments 6.4.0.00 through 6.4.2.07, 6.5.0.00 through 6.5.0.05, and 6.6.0.00 through 6.6... High Unreviewed
CVE-2024-45662 was published Jan 18, 2025
matrix-media-repo (MMR) allows denial of service/high operating costs through unauthenticated downloads Moderate
CVE-2024-36403 was published for github.com/t2bot/matrix-media-repo (Go) Jan 16, 2025
An unauthenticated remote attacker can cause a DoS in the controller due to uncontrolled resource... High Unreviewed
CVE-2018-25108 was published Jan 16, 2025
Django has a potential denial-of-service vulnerability in IPv6 validation Moderate
CVE-2024-56374 was published for Django (pip) Jan 14, 2025
A allocation of resources without limits or throttling in Fortinet FortiSIEM 5.3 all versions, 5... High Unreviewed
CVE-2024-46667 was published Jan 14, 2025
An allocation of resources without limits or throttling [CWE-770] vulnerability in FortiOS... Moderate Unreviewed
CVE-2024-46666 was published Jan 14, 2025
An allocation of resources without limits or throttling vulnerability [CWE-770] in FortiOS... High Unreviewed
CVE-2024-46668 was published Jan 14, 2025
An issue in the sqlg_group_node component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57664 was published Jan 14, 2025
An issue in the sqlg_hash_source component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57662 was published Jan 14, 2025
An issue in the sqlg_place_dpipes component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57663 was published Jan 14, 2025
IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1... Moderate Unreviewed
CVE-2022-22491 was published Jan 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database