Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,311
Maven
5,000+
npm
3,949
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+

246 advisories

Loading
Regular expression denial of service in forms Moderate
CVE-2021-23388 was published for forms (npm) Jun 7, 2021
glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex High
CVE-2020-28469 was published for glob-parent (npm) Jun 7, 2021
sealonohana
ReDoS in Sec-Websocket-Protocol header Moderate
CVE-2021-32640 was published for ws (npm) May 28, 2021
robmcl4
Regular Expression Denial of Service in browserslist Moderate
CVE-2021-23364 was published for browserslist (npm) May 24, 2021
Uncontrolled Resource Consumption in firebase Moderate
CVE-2020-7765 was published for @firebase/util (npm) May 18, 2021
Regular expression deinal of service in express-validators Moderate
CVE-2020-7767 was published for express-validators (npm) May 10, 2021
Arbitrary Code Execution in json-ptr High
CVE-2020-7766 was published for json-ptr (npm) May 10, 2021
tdunlap607
Regular expression denial of service in @absolunet/kafe Moderate
CVE-2020-7761 was published for @absolunet/kafe (npm) May 10, 2021
Regular expression denial of service in npm-user-validate High
CVE-2020-7754 was published for npm-user-validate (npm) May 10, 2021
Regular expression denial of service in codemirror Moderate
CVE-2020-7760 was published for codemirror (npm) May 10, 2021
Regular Expression Denial of Service in dat.gui High
CVE-2020-7755 was published for dat.gui (npm) May 10, 2021
Regular Expression Denial of Service in trim High
CVE-2020-7753 was published for trim (npm) May 10, 2021
Regular Expression Denial of Service in postcss Moderate
CVE-2021-23368 was published for postcss (npm) May 10, 2021
Uncontrolled Resource Consumption in json-bigint High
CVE-2020-8237 was published for json-bigint (npm) May 7, 2021
Regular Expression Denial of Service in ua-parser-js High
CVE-2020-7733 was published for ua-parser-js (npm) May 7, 2021
Uncontrolled Resource Consumption in fastify-multipart Moderate
CVE-2020-8136 was published for fastify-multipart (npm) May 6, 2021
Regular Expression Denial of Service (ReDoS) in ua-parser-js High
CVE-2021-27292 was published for ua-parser-js (npm) May 6, 2021
Regular Expression Denial of Service in hosted-git-info Moderate
CVE-2021-23362 was published for hosted-git-info (npm) May 6, 2021
Denial of service in chrono-node High
CVE-2021-23371 was published for chrono-node (npm) May 6, 2021
Node-Redis potential exponential regex in monitor mode High
CVE-2021-29469 was published for redis (npm) Apr 27, 2021
erik-krogh
Denial of Service (DoS) via the unsetByPath function in jsjoints High
CVE-2020-28479 was published for jointjs (npm) Apr 13, 2021
Prototype Pollution in asciitable.js Critical
CVE-2020-7771 was published for asciitable.js (npm) Apr 13, 2021
tdunlap607
Uncontrolled Resource Consumption in rdf-graph-array Moderate
CVE-2019-10798 was published for rdf-graph-array (npm) Apr 13, 2021
Prototype Pollution in decal High
CVE-2020-28450 was published for decal (npm) Apr 13, 2021
Prototype Pollution in decal High
CVE-2020-28449 was published for decal (npm) Apr 13, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database