Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,968
Erlang
39
GitHub Actions
38
Go
2,616
Maven
5,000+
npm
4,255
NuGet
760
pip
4,040
Pub
12
RubyGems
953
Rust
1,050
Swift
45
Unreviewed advisories
All unreviewed
5,000+

42 advisories

Loading
Inefficient Algorithmic Complexity in com.upokecenter:cbor High
CVE-2024-23684 was published for com.upokecenter:cbor (Maven) Jan 19, 2024
Duplicate Advisory: Denial of service in CBOR library High
GHSA-hf3r-vmrv-7w29 was published for PeterO.Cbor (NuGet) Jan 3, 2024 withdrawn
Several quadratic complexity bugs may lead to denial of service in Commonmarker Moderate
GHSA-7vh7-fw88-wj87 was published for commonmarker (RubyGems) Aug 8, 2023
Trustwave ModSecurity 3.x before 3.0.10 has Inefficient Algorithmic Complexity. High Unreviewed
CVE-2023-38285 was published Jul 26, 2023
PyPDF2 quadratic runtime with malformed PDF missing xref marker Moderate
CVE-2023-36810 was published for PyPDF2 (pip) Jun 30, 2023
A vulnerability was found in Dreamer CMS up to 4.1.3. It has been declared as problematic. This... Moderate Unreviewed
CVE-2023-2473 was published May 2, 2023
An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one... High Unreviewed
CVE-2022-45061 was published Nov 9, 2022
Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service (CPU consumption)... High Unreviewed
CVE-2022-40188 was published Sep 25, 2022
knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU... High Unreviewed
CVE-2019-19331 was published May 24, 2022
An issue was discovered in Total.js CMS 12.0.0. A low privilege user can perform a simple... Moderate Unreviewed
CVE-2019-15955 was published May 24, 2022
Due to an incomplete fix for CVE-2012-6125, all versions of CHICKEN Scheme up to and including 4... High Unreviewed
CVE-2017-11343 was published May 17, 2022
The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity... High Unreviewed
CVE-2016-10396 was published May 17, 2022
The parse() method in the Email::Address module through 1.909 for Perl is vulnerable to... High Unreviewed
CVE-2018-12558 was published May 14, 2022
Inefficient Algorithmic Complexity in Apache Santuario XML Security Moderate
CVE-2013-2172 was published for org.apache.santuario:xmlsec (Maven) May 13, 2022
MarkLee131
Credited to MarkLee131
Denial of service in CBOR library High
CVE-2024-21909 was published for PeterO.Cbor (NuGet) Jan 21, 2022
Denial of service in CBOR library High
GHSA-fj2w-wfgv-mwq6 was published for com.upokecenter:cbor (Maven) Jan 21, 2022
An Insufficient Algorithmic Complexity combined with an Allocation of Resources Without Limits or... High Unreviewed
CVE-2022-22153 was published Jan 20, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database