Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

115 advisories

Loading
The Remote Mount feature can potentially be abused by valid, authenticated users to make... Moderate Unreviewed
CVE-2022-34888 was published Jan 31, 2023
uri-template-lite Regular Expression Denial of Service Moderate
CVE-2021-43309 was published for uri-template-lite (npm) Aug 25, 2022
marfoldi
Regular expression denial of service in eth-account Moderate
CVE-2022-1930 was published for eth-account (pip) Aug 23, 2022
JPEGDEC commit be4843c was discovered to contain a FPE via DecodeJPEG at /src/jpeg.inl. Moderate Unreviewed
CVE-2022-34999 was published Aug 17, 2022
JetBrains Ktor before 2.1.0 was vulnerable to a Reflect File Download attack Moderate
CVE-2022-38179 was published for io.ktor:ktor (Maven) Aug 13, 2022
In JetBrains YouTrack before 2021.2.16363, time-unsafe comparisons were used. High Unreviewed
CVE-2021-37550 was published May 24, 2022
chatwoot is vulnerable to Inefficient Regular Expression Complexity High Unreviewed
CVE-2021-3649 was published May 24, 2022
The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as... Moderate Unreviewed
CVE-2020-28200 was published May 24, 2022
Codiad Vulnerable to PHP Magic Hash Vulnerability High
CVE-2020-23355 was published for codiad/codiad (Composer) May 24, 2022
ProTip! Advisories are also available from the GraphQL API