GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,307
Composer 5,343
Erlang 44
GitHub Actions 45
Go 3,196
Maven 6,305
npm 5,177
NuGet 864
pip 4,483
Pub 12
RubyGems 992
Rust 1,186
Swift 51

Unreviewed advisories

All unreviewed 293,771

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

40 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A flaw was found in REXML. A remote attacker could exploit inefficient regular expression (regex)... High Unreviewed

CVE-2025-10990 was published Feb 27, 2026

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.7.5, 18... High Unreviewed

CVE-2026-1388 was published Feb 25, 2026

Denial of service condition in M-Files Server in versions before 24.4.13592.4 and after 23.11 ... High Unreviewed

CVE-2024-4056 was published Apr 26, 2024

LangChain versions up to and including 0.3.1 contain a regular expression denial-of-service ... High Unreviewed

CVE-2024-58340 was published Jan 13, 2026

Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10... High Unreviewed

CVE-2025-62484 was published Nov 13, 2025

There is a MEDIUM severity vulnerability affecting CPython. Regular expressions that allowed... High Unreviewed

CVE-2024-6232 was published Sep 3, 2024

There is a LOW severity vulnerability affecting CPython, specifically the 'http.cookies' standard... High Unreviewed

CVE-2024-7592 was published Aug 19, 2024

A vulnerability in lunary-ai/lunary, as of commit be54057, allows users to upload and execute... High Unreviewed

CVE-2024-8764 was published Mar 20, 2025

Lunary-ai/lunary version git 105a3f6 is vulnerable to a Regular Expression Denial of Service ... High Unreviewed

CVE-2024-8789 was published Mar 20, 2025

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary... High Unreviewed

CVE-2024-8763 was published Mar 20, 2025

A vulnerability in danswer-ai/danswer version 1 allows an attacker to perform a Regular... High Unreviewed

CVE-2024-7779 was published Mar 20, 2025

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the latest version of... High Unreviewed

CVE-2024-6038 was published Jun 27, 2024

Running DDoS on tcp port 22 will trigger a kernel crash. This issue is introduced by the backport... High Unreviewed

CVE-2023-0881 was published Mar 31, 2025

IBM Concert Software 1.0.0 through 1.1.0 could allow a remote attacker to cause a denial of... High Unreviewed

CVE-2025-33090 was published Aug 18, 2025

The WP-Syntax WordPress plugin through 1.2 does not properly handle input, allowing an attacker... High Unreviewed

CVE-2024-13926 was published Apr 19, 2025

A Regular Expression Denial of Service (ReDoS) vulnerability exists in lunary-ai/lunary version... High Unreviewed

CVE-2024-8998 was published Mar 20, 2025

A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary... High Unreviewed

CVE-2024-4148 was published Jun 1, 2024

An issue in alanclarke URLite v.3.1.0 allows an attacker to cause a denial of service (DoS) via a... High Unreviewed

CVE-2023-51931 was published Feb 16, 2024

An issue in the validate_email function in CTFd/utils/validators/__init__.py of CTFd 3.7.3 allows... High Unreviewed

CVE-2024-46242 was published Jan 7, 2025

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote... High Unreviewed

CVE-2024-41766 was published Jan 4, 2025

HTML2Markdown is a Javascript implementation for converting HTML to Markdown text. All available... High Unreviewed

CVE-2020-26307 was published Oct 26, 2024

Validate.js provides a declarative way of validating javascript objects. All versions as of 30... High Unreviewed

CVE-2020-26310 was published Oct 26, 2024

Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows DoS/ReDos via email.... High Unreviewed

CVE-2024-48938 was published Oct 11, 2024

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 before 16... High Unreviewed

CVE-2024-2829 was published Apr 25, 2024

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.1.7... High Unreviewed

CVE-2024-8124 was published Sep 12, 2024

Previous12 Next

Previous 1 2 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

40 advisories