Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,793
Erlang
29
GitHub Actions
16
Go
1,710
Maven
4,947
npm
3,475
NuGet
605
pip
3,001
Pub
10
RubyGems
828
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

16 advisories

Inefficient Algorithmic Complexity in com.upokecenter:cbor High
CVE-2024-23684 was published for com.upokecenter:cbor (Maven) Jan 19, 2024
Duplicate Advisory: Denial of service in CBOR library High
GHSA-hf3r-vmrv-7w29 was published for PeterO.Cbor (NuGet) Jan 3, 2024 withdrawn
Several quadratic complexity bugs may lead to denial of service in Commonmarker Moderate
GHSA-7vh7-fw88-wj87 was published for commonmarker (RubyGems) Aug 8, 2023
Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity. High Unreviewed
CVE-2023-38285 was published Jul 26, 2023
PyPDF2 quadratic runtime with malformed PDF missing xref marker Moderate
CVE-2023-36810 was published for PyPDF2 (pip) Jun 30, 2023
A vulnerability was found in Dreamer CMS up to 4.1.3. It has been declared as problematic. This... Moderate Unreviewed
CVE-2023-2473 was published May 2, 2023
An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one... High Unreviewed
CVE-2022-45061 was published Nov 9, 2022
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU... High Unreviewed
CVE-2019-19331 was published May 24, 2022
An issue was discovered in Total.js CMS 12.0.0. A low privilege user can perform a simple... Moderate Unreviewed
CVE-2019-15955 was published May 24, 2022
Due to an incomplete fix for CVE-2012-6125, all versions of CHICKEN Scheme up to and including 4... High Unreviewed
CVE-2017-11343 was published May 17, 2022
The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity... High Unreviewed
CVE-2016-10396 was published May 17, 2022
The parse() method in the Email::Address module through 1.909 for Perl is vulnerable to... High Unreviewed
CVE-2018-12558 was published May 14, 2022
Inefficient Algorithmic Complexity in Apache Santuario XML Security Moderate
CVE-2013-2172 was published for org.apache.santuario:xmlsec (Maven) May 13, 2022
MarkLee131
Denial of service in CBOR library High
CVE-2024-21909 was published for PeterO.Cbor (NuGet) Jan 21, 2022
Denial of service in CBOR library High
GHSA-fj2w-wfgv-mwq6 was published for com.upokecenter:cbor (Maven) Jan 21, 2022
An Insufficient Algorithmic Complexity combined with an Allocation of Resources Without Limits or... High Unreviewed
CVE-2022-22153 was published Jan 20, 2022
ProTip! Advisories are also available from the GraphQL API