GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,869
Erlang
29
GitHub Actions
16
Go
1,717
Maven
4,951
npm
3,480
NuGet
605
pip
3,026
Pub
10
RubyGems
832
Rust
776
Swift
34
Unreviewed advisories
All unreviewed
5,000+
10,379 advisories
Filter by severity
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
High
Unreviewed
CVE-2021-44369
was published
Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
High
Unreviewed
CVE-2021-44370
was published
Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
High
Unreviewed
CVE-2021-44378
was published
Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
High
Unreviewed
CVE-2021-44381
was published
Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
High
Unreviewed
CVE-2021-44376
was published
Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
High
Unreviewed
CVE-2021-44379
was published
Feb 9, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
High
Unreviewed
CVE-2021-44374
was published
Feb 9, 2022
Validation bypass in frourio-express
High
CVE-2022-23624
was published
for
frourio-express
(npm)
Feb 7, 2022
Improper Input Validation in Apache Pulsar
Moderate
CVE-2021-41571
was published
for
org.apache.pulsar:pulsar
(Maven)
Feb 2, 2022
Command injection in gh-ost
Moderate
CVE-2022-21687
was published
for
github.com/github/gh-ost
(Go)
Feb 1, 2022
Go-Attestation Improper Input Validation with attacker-controlled TPM Quote
Moderate
CVE-2022-0317
was published
for
github.com/google/go-attestation
(Go)
Feb 1, 2022
A CWE-20: Improper Input Validation vulnerability exists that could cause arbitrary code...
High
Unreviewed
CVE-2021-22826
was published
Jan 29, 2022
A CWE-20: Improper Input Validation vulnerability exists that could cause arbitrary code...
High
Unreviewed
CVE-2021-22827
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi API command parser functionality of...
High
Unreviewed
CVE-2021-40423
was published
Jan 29, 2022
A memory corruption vulnerability exists in the netserver parse_command_list functionality of...
High
Unreviewed
CVE-2022-21796
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
Moderate
Unreviewed
CVE-2021-44360
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
Moderate
Unreviewed
CVE-2021-44359
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
Moderate
Unreviewed
CVE-2021-44363
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
Moderate
Unreviewed
CVE-2021-44361
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
Moderate
Unreviewed
CVE-2021-44358
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
Moderate
Unreviewed
CVE-2021-44365
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
Moderate
Unreviewed
CVE-2021-44364
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
Moderate
Unreviewed
CVE-2021-44362
was published
Jan 29, 2022
A denial of service vulnerability exists in the cgiserver.cgi JSON command parser functionality...
Moderate
Unreviewed
CVE-2021-44385
was published
Jan 29, 2022
ProTip!
Advisories are also available from the
GraphQL API