GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

53 advisories

Critical

CVE-2017-0905 was published for recurly (RubyGems) Dec 6, 2017

Critical

CVE-2017-0889 was published for paperclip (RubyGems) Jan 22, 2018

Critical

CVE-2017-0907 was published for recurly-api-client (NuGet) Oct 16, 2018

Critical

CVE-2017-0906 was published for recurly (pip) Jan 4, 2019

Critical

CVE-2018-14721 was published for com.fasterxml.jackson.core:jackson-databind (Maven) Jan 4, 2019

Critical

CVE-2019-10686 was published for com.ctrip.framework.apollo:apollo (Maven) Apr 18, 2019

Critical

CVE-2019-11027 was published for ruby-openid (RubyGems) Jun 13, 2019

Critical

CVE-2019-9827 was published for io.hawt:hawtio-core (Maven) Jul 5, 2019

Critical

CVE-2020-15152 was published for ftp-srv (npm) Aug 17, 2020

Critical

CVE-2020-28360 was published for private-ip (npm) Apr 13, 2021

Critical

CVE-2021-30492 was published for zendesk/zendesk_api_client_php (Composer) Apr 29, 2021

Critical

CVE-2020-27197 was published for libtaxii (pip) Apr 30, 2021

Critical

CVE-2021-30108 was published for feehi/cms (Composer) Jun 8, 2021

Critical

CVE-2021-32682 was published for studio-42/elfinder (Composer) Jun 16, 2021

Critical

CVE-2022-0671 was published for org.eclipse.lemminx:lemminx-parent (Maven) Feb 19, 2022

Critical

CVE-2022-0768 was published for rudloff/alltube (Composer) Mar 1, 2022

Critical

CVE-2022-0766 was published for calibreweb (pip) Mar 8, 2022

Critical

CVE-2022-0767 was published for calibreweb (pip) Mar 8, 2022

Critical

CVE-2022-27311 was published for gibbon (RubyGems) Apr 26, 2022

Critical

CVE-2019-3809 was published for moodle/moodle (Composer) May 13, 2022

Critical

CVE-2019-18394 was published for org.igniterealtime.openfire:parent (Maven) May 24, 2022

Critical

CVE-2020-13226 was published for org.wso2.am:am-parent (Maven) May 24, 2022

Critical

CVE-2022-29180 was published for github.com/charmbracelet/charm (Go) May 24, 2022

Critical

CVE-2022-31830 was published for kityminder (npm) Jun 10, 2022

Critical

CVE-2022-2216 was published for parse-url (npm) Jun 28, 2022

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

53 advisories