GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

32 advisories

Critical

CVE-2017-7657 was published for org.eclipse.jetty:jetty-server (Maven) Oct 19, 2018

Critical

CVE-2017-7658 was published for org.eclipse.jetty:jetty-server (Maven) Oct 19, 2018

Critical

CVE-2019-16792 was published for waitress (pip) Dec 20, 2019

Critical

CVE-2019-20444 was published for io.netty:netty (Maven) Feb 21, 2020

Critical

CVE-2020-7611 was published for io.micronaut:micronaut-http-client (Maven) Mar 30, 2020

Critical

CVE-2020-10109 was published for Twisted (pip) Mar 31, 2020

Critical

CVE-2020-10108 was published for Twisted (pip) Mar 31, 2020

Critical

CVE-2020-7622 was published for io.jooby:jooby-netty (Maven) Apr 3, 2020

Critical

CVE-2020-35863 was published for hyper (Rust) Aug 25, 2021

Critical

CVE-2021-39214 was published for mitmproxy (pip) Sep 20, 2021

Critical

GHSA-r64m-qchj-hrjp was published for shopware/core (Composer) Nov 24, 2021

Critical

CVE-2021-30180 was published for org.apache.dubbo:dubbo (Maven) Mar 18, 2022

Critical

CVE-2022-24766 was published for mitmproxy (pip) Mar 22, 2022

Critical

CVE-2022-24790 was published for puma (RubyGems) Mar 30, 2022

Critical

CVE-2022-24801 was published for twisted (pip) Apr 4, 2022

Critical

CVE-2022-32213 was published for llhttp (npm) Jul 15, 2022

Critical

CVE-2022-32214 was published for llhttp (npm) Jul 15, 2022

Critical

CVE-2022-2466 was published for io.quarkus:quarkus-core-parent (Maven) Sep 1, 2022

Critical

CVE-2023-29141 was published for mediawiki/core (Composer) Mar 31, 2023

Critical

CVE-2023-27238 was published for lavalite/cms (Composer) May 12, 2023

Critical

GHSA-mgc4-wqv7-4pxm was published for github.com/apple/swift-nio (Swift) May 18, 2023

Critical

CVE-2023-40175 was published for puma (RubyGems) Aug 18, 2023

Critical

CVE-2024-27922 was published for @tomphttp/bare-server-node (npm) Mar 5, 2024

Critical

CVE-2024-49768 was published for waitress (pip) Oct 29, 2024

Critical

CVE-2025-22871 was published for spiral/roadrunner (Composer) Apr 8, 2025

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

32 advisories

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

32 advisories

Uh oh!