Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,748
Erlang
35
GitHub Actions
29
Go
2,321
Maven
5,000+
npm
3,955
NuGet
712
pip
3,736
Pub
12
RubyGems
921
Rust
972
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,788 advisories

Loading
A vulnerability in the Dockerized version of mintplex-labs/anything-llm (latest, digest... Moderate Unreviewed
CVE-2024-7771 was published Mar 20, 2025
Open WebUI denial of service through endpoint for converting markdown High
CVE-2024-7983 was published for open-webui (pip) Mar 20, 2025
A vulnerability in imartinez/privategpt version 0.5.0 allows for a Denial of Service (DOS) attack... High Unreviewed
CVE-2024-8018 was published Mar 20, 2025
Aim allows denial of service due to no timeouts for some tracking server endpoints High
CVE-2024-8061 was published for aim (pip) Mar 20, 2025
A vulnerability in danswer-ai/danswer v0.3.94 allows an attacker to cause a Denial of Service ... High Unreviewed
CVE-2024-8028 was published Mar 20, 2025
A Denial of Service (DoS) vulnerability exists in multiple file upload endpoints of parisneo... High Unreviewed
CVE-2024-8736 was published Mar 20, 2025
Lunary-ai/lunary version git 105a3f6 is vulnerable to a Regular Expression Denial of Service ... High Unreviewed
CVE-2024-8789 was published Mar 20, 2025
A Regular Expression Denial of Service (ReDoS) vulnerability exists in the lunary-ai/lunary... High Unreviewed
CVE-2024-8763 was published Mar 20, 2025
A Regular Expression Denial of Service (ReDoS) vulnerability exists in lunary-ai/lunary version... High Unreviewed
CVE-2024-8998 was published Mar 20, 2025
LiteLLM Vulnerable to Denial of Service (DoS) via Crafted HTTP Request High
CVE-2024-8984 was published for litellm (pip) Mar 20, 2025
ishaan-jaff
Gradio DOS in multipart boundry while uploading the file High
CVE-2024-8966 was published for gradio (pip) Mar 20, 2025
Quivr unauthenticated Denial of Service (DoS) via Multipart Boundary High
CVE-2024-9229 was published for quivr-core (pip) Mar 20, 2025
BentoML Denial of Service (DoS) via Multipart Boundary High
CVE-2024-9056 was published for bentoml (pip) Mar 20, 2025
Open WebUI Unauthenticated Multipart Boundary Denial of Service (DoS) Vulnerability High
GHSA-5ccf-884p-4jjq was published for open-webui (npm) Mar 20, 2025
ZenML unauthenticated DoS via Multipart Boundry High
CVE-2024-9340 was published for zenml (pip) Mar 20, 2025
SuperAGI version v0.0.14 is vulnerable to an unauthenticated Denial of Service (DoS) attack. The... High Unreviewed
CVE-2024-9437 was published Mar 20, 2025
A vulnerability in parisneo/lollms-webui v13 arises from the server's handling of multipart... High Unreviewed
CVE-2025-1451 was published Mar 20, 2025
MLflow Uncontrolled Resource Consumption vulnerability Moderate
CVE-2025-0453 was published for mlflow (pip) Mar 20, 2025
A Denial of Service (DoS) vulnerability exists in the file upload feature of gaizhenbiao... Moderate Unreviewed
CVE-2025-0191 was published Mar 20, 2025
A Denial of Service (DoS) vulnerability was discovered in the file upload feature of gradio-app... High Unreviewed
CVE-2025-0187 was published Mar 20, 2025
A vulnerability in danswer-ai/danswer version 0.9.0 allows for denial of service through memory... High Unreviewed
CVE-2025-0182 was published Mar 20, 2025
Aim Uncontrolled Resource Consumption vulnerability High
CVE-2025-0189 was published for aim (pip) Mar 20, 2025
Redlib allows a Denial of Service via DEFLATE Decompression Bomb in restore_preferences Form High
CVE-2025-30160 was published for redlib (Rust) Mar 21, 2025
Tokarak
: Uncontrolled Resource Consumption vulnerability in Wind River Systems VxWorks 7 on VxWorks... Moderate Unreviewed
CVE-2025-26500 was published Mar 22, 2025
In NASA cFS (Core Flight System) Aquila, it is possible to put the onboard software in a state... High Unreviewed
CVE-2025-25374 was published Mar 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database