GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

1,946 advisories

High

CVE-2025-43772 was published for com.liferay:com.liferay.portal.workflow.kaleo.forms.web (Maven) Sep 4, 2025

High

CVE-2020-26217 was published for com.thoughtworks.xstream:xstream (Maven) Nov 16, 2020

High

CVE-2016-10707 was published for jQuery (RubyGems) Jan 22, 2018

High

CVE-2017-12617 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) May 14, 2022

High

CVE-2016-8745 was published for org.apache.tomcat:tomcat-util (Maven) May 14, 2022

High

CVE-2023-26464 was published for log4j:log4j (Maven) Mar 10, 2023

High

CVE-2016-1000342 was published for org.bouncycastle:bcprov-jdk14 (Maven) Oct 17, 2018

High

CVE-2022-3510 was published for com.google.protobuf:protobuf-java (Maven) Dec 12, 2022

High

CVE-2022-3509 was published for com.google.protobuf:protobuf-java (Maven) Dec 12, 2022

High

CVE-2021-22570 was published for Google.Protobuf (Composer) Jan 27, 2022 • withdrawn

High

CVE-2023-5072 was published for org.json:json (Maven) Nov 14, 2023

High

CVE-2025-48989 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Aug 13, 2025

High

CVE-2025-51606 was published for cn.hippo4j:hippo4j-core (Maven) Aug 21, 2025

High

CVE-2025-5115 was published for org.eclipse.jetty.http2:http2-common (Maven) Aug 20, 2025

High

CVE-2025-43748 was published for com.liferay.portal:release.portal.bom (Maven) Aug 20, 2025

High

CVE-2023-1428 was published for grpc (RubyGems) Jul 6, 2023

High

CVE-2023-32731 was published for grpc (RubyGems) Jul 5, 2023

High

CVE-2023-35030 was published for com.liferay.portal:release.dxp.bom (Maven) Jun 15, 2023

High

CVE-2025-48988 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jun 16, 2025

High

CVE-2024-50379 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Dec 17, 2024

High

CVE-2024-38286 was published for org.apache.tomcat:tomcat-util (Maven) Nov 7, 2024

High

CVE-2024-34750 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jul 3, 2024

High

CVE-2023-46589 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Nov 28, 2023

High

CVE-2025-53606 was published for org.apache.seata:seata-serializer-fury (Maven) Aug 8, 2025

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,946 advisories

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,946 advisories

Uh oh!