GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
138 advisories
Filter by severity
Uncontrolled Resource Consumption in Hawk
High
CVE-2022-29167
was published
for
hawk
(npm)
May 23, 2022
Regular expression denial of service in Apache ShenYu
High
CVE-2022-26650
was published
for
org.apache.shenyu:shenyu
(Maven)
May 18, 2022
Django ReDoS in validators.URLValidator
High
CVE-2015-5145
was published
for
Django
(pip)
May 17, 2022
Django Regex Algorithmic Complexity Causes Denial of Service
High
CVE-2009-3695
was published
for
Django
(pip)
May 2, 2022
Nokogiri Inefficient Regular Expression Complexity
High
CVE-2022-24836
was published
for
nokogiri
(RubyGems)
Apr 11, 2022
Uncontrolled Resource Consumption in Apache DolphinScheduler
High
CVE-2022-25598
was published
for
apache-dolphinscheduler
(Maven)
Mar 31, 2022
Rust's regex crate vulnerable to regular expression denial of service
High
CVE-2022-24713
was published
for
regex
(Rust)
Mar 8, 2022
Inefficient Regular Expression Complexity in marked
High
CVE-2022-21681
was published
for
marked
(npm)
Jan 14, 2022
Inefficient Regular Expression Complexity in marked
High
CVE-2022-21680
was published
for
marked
(npm)
Jan 14, 2022
ReDos vulnerability on guest checkout email validation
High
CVE-2021-43805
was published
for
solidus_core
(RubyGems)
Dec 7, 2021
Regular expression denial of service vulnerability (ReDoS) in date
High
CVE-2021-41817
was published
for
date
(RubyGems)
Nov 16, 2021
github.com/tidwall/gjson Vulnerable to REDoS attack
High
CVE-2021-42836
was published
for
github.com/tidwall/gjson
(Go)
Oct 25, 2021
Inefficient Regular Expression Complexity in handsontable
High
CVE-2021-23446
was published
for
handsontable
(npm)
Sep 30, 2021
inflect vulnerable to Inefficient Regular Expression Complexity
High
CVE-2021-3820
was published
for
i
(npm)
Sep 29, 2021
Regular Expression Denial of Service in Leo Editor
High
CVE-2020-23478
was published
for
leo
(pip)
Sep 23, 2021
Inefficient Regular Expression Complexity in nth-check
High
CVE-2021-3803
was published
for
nth-check
(npm)
Sep 20, 2021
semver-regex Regular Expression Denial of Service (ReDOS)
High
CVE-2021-3795
was published
for
semver-regex
(npm)
Sep 20, 2021
Inefficient Regular Expression Complexity in vuelidate
High
CVE-2021-3794
was published
for
@vuelidate/validators
(npm)
Sep 20, 2021
Inefficient Regular Expression Complexity in chalk/ansi-regex
High
CVE-2021-3807
was published
for
ansi-regex
(npm)
Sep 20, 2021
Inefficient Regular Expression Complexity in code-server
High
CVE-2021-3810
was published
for
code-server
(npm)
Sep 20, 2021
Inefficient Regular Expression Complexity in taro
High
CVE-2021-3804
was published
for
@tarojs/helper
(npm)
Sep 20, 2021
Regular Expression Denial of Service in flask-restx
High
CVE-2021-32838
was published
for
flask-restx
(pip)
Sep 8, 2021
axios Inefficient Regular Expression Complexity vulnerability
High
CVE-2021-3749
was published
for
axios
(npm)
Sep 1, 2021
ProTip!
Advisories are also available from the
GraphQL API