GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,093
Composer 4,077
Erlang 29
GitHub Actions 19
Go 1,902
Maven 5,100
npm 3,631
NuGet 638
pip 3,246
Pub 10
RubyGems 863
Rust 818
Swift 35

Unreviewed advisories

All unreviewed 228,445

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6 advisories

Filter by severity

Sort by

Least recently updated

Constallation has pods exposed to peers in VPC High

GHSA-g8fc-vrcg-8vjg was published for github.com/edgelesssys/constellation/v2 (Go) Apr 15, 2024

usememos/memos vulnerable to Improper Verification of Source of a Communication Channel Moderate

CVE-2022-4848 was published for github.com/usememos/memos (Go) Dec 29, 2022

usememos/memos vulnerable to Improper Verification of Source of a Communication Channel Moderate

CVE-2022-4800 was published for github.com/usememos/memos (Go) Dec 28, 2022

Improper Verification of Source of a Communication Channel in Apache Tomcat Moderate

CVE-2016-0763 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022

SleekXMPP and Slixmpp Incorrect Implementation of Message Carbons Moderate

CVE-2017-5591 was published for SleekXMPP (pip) May 13, 2022

Improper Verification of Communication Channel in @theia/plugin-ext Moderate

CVE-2021-41038 was published for @theia/plugin-ext (npm) Nov 15, 2021

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6 advisories