GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
45 advisories
Filter by severity
Missing validation in shape inference for `Dequantize`
Moderate
CVE-2021-37677
was published
for
tensorflow
(pip)
Aug 25, 2021
Incomplete validation in `MaxPoolGrad`
Moderate
CVE-2021-37674
was published
for
tensorflow
(pip)
Aug 25, 2021
Transaction validity oversight in pallet-ethereum
Moderate
CVE-2021-39193
was published
for
pallet-ethereum
(Rust)
Sep 1, 2021
Logic error in dolibarr
Moderate
CVE-2022-0174
was published
for
dolibarr/dolibarr
(Composer)
Jan 12, 2022
An Improper Validation of Specified Quantity in Input vulnerability in the routing protocol...
Moderate
Unreviewed
CVE-2022-22166
was published
Jan 20, 2022
Dolibarr vulnerable to Improper Validation of Specified Quantity in Input
Moderate
CVE-2022-0414
was published
for
dolibarr/dolibarr
(Composer)
Feb 1, 2022
Abort caused by allocating a vector that is too large in Tensorflow
Moderate
CVE-2022-23580
was published
for
tensorflow
(pip)
Feb 7, 2022
Microweber vulnerable to Improper Validation of Specified Quantity in Input
Moderate
CVE-2022-0596
was published
for
microweber/microweber
(Composer)
Feb 16, 2022
Missing validation causes denial of service via `Conv3DBackpropFilterV2`
Moderate
CVE-2022-29196
was published
for
tensorflow
(pip)
May 24, 2022
Missing validation causes denial of service via `LSTMBlockCell`
Moderate
CVE-2022-29200
was published
for
tensorflow
(pip)
May 24, 2022
Denial of service in `tf.ragged.constant` due to lack of validation
Moderate
CVE-2022-29202
was published
for
tensorflow
(pip)
May 24, 2022
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site...
Moderate
Unreviewed
CVE-2022-31629
was published
Sep 29, 2022
ToolJet is vulnerable to Denial of Service (DoS)
Moderate
CVE-2022-4111
was published
for
tooljet
(npm)
Nov 22, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Adaptive...
Moderate
Unreviewed
CVE-2022-20691
was published
Dec 12, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA...
Moderate
Unreviewed
CVE-2022-20687
was published
Dec 12, 2022
A vulnerability in the Cisco Discovery Protocol functionality of Cisco ATA 190 Series Analog...
Moderate
Unreviewed
CVE-2022-20688
was published
Dec 12, 2022
Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) functionality of Cisco ATA...
Moderate
Unreviewed
CVE-2022-20686
was published
Dec 12, 2022
An Unchecked Input for Loop Condition vulnerability in a NAT library of Juniper Networks Junos OS...
Moderate
Unreviewed
CVE-2023-22409
was published
Jan 13, 2023
IPFS go-bitfield vulnerable to DoS via malformed size arguments
Moderate
CVE-2023-23626
was published
for
github.com/ipfs/go-bitfield
(Go)
Feb 10, 2023
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer...
Moderate
Unreviewed
CVE-2023-0194
was published
Apr 1, 2023
A vulnerability was found in SourceCodester Card Holder Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2023-4439
was published
Aug 21, 2023
An Improper Validation of Specified Quantity in Input vulnerability in the Layer-2 control...
Moderate
Unreviewed
CVE-2023-36839
was published
Oct 13, 2023
Django Denial of service vulnerability in django.utils.encoding.uri_to_iri
Moderate
CVE-2023-41164
was published
for
django
(pip)
Nov 3, 2023
A vulnerability exists in the input validation of the GOOSE
messages where out of range values...
Moderate
Unreviewed
CVE-2023-4518
was published
Dec 1, 2023
ProTip!
Advisories are also available from the
GraphQL API