GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,732
Erlang
35
GitHub Actions
29
Go
2,308
Maven
5,000+
npm
3,949
NuGet
711
pip
3,727
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+
281 advisories
Filter by severity
CodeIgniter4 DoS Vulnerability
High
CVE-2024-29904
was published
for
codeigniter4/framework
(Composer)
Mar 29, 2024
qubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users...
High
Unreviewed
CVE-2022-46770
was published
Dec 7, 2022
Infinite loop condition in Amazon.IonDotnet
High
CVE-2025-3857
was published
for
Amazon.IonDotnet
(NuGet)
Apr 21, 2025
In ImageMagick 7.0.7-12 Q16, an infinite loop vulnerability was found in the function...
High
Unreviewed
CVE-2017-17681
was published
May 13, 2022
The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote...
High
Unreviewed
CVE-2017-16944
was published
May 13, 2022
In systemd 223 through 235, a remote DNS server can respond with a custom crafted DNS NSEC...
High
Unreviewed
CVE-2017-15908
was published
May 13, 2022
The DNS packet parser in YADIFA before 2.2.6 does not check for the presence of infinite pointer...
High
Unreviewed
CVE-2017-14339
was published
May 13, 2022
There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to...
High
Unreviewed
CVE-2017-13728
was published
May 13, 2022
The ExifImageFile::readImage function in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote...
High
Unreviewed
CVE-2017-11118
was published
May 13, 2022
The TDStretch::processSamples function in source/SoundTouch/TDStretch.cpp in SoundTouch 1.9.2...
High
Unreviewed
CVE-2017-9258
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could go into an infinite...
High
Unreviewed
CVE-2017-11406
was published
May 13, 2022
The quicktime_read_moov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause...
High
Unreviewed
CVE-2017-9122
was published
May 13, 2022
The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote...
High
Unreviewed
CVE-2017-8871
was published
May 13, 2022
The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE types when the x509 plugin...
High
Unreviewed
CVE-2017-9023
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the SoulSeek dissector could go into an infinite...
High
Unreviewed
CVE-2017-9346
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bazaar dissector could go into an infinite...
High
Unreviewed
CVE-2017-9352
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DNS dissector could go into an infinite loop...
High
Unreviewed
CVE-2017-9345
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DICOM dissector has an infinite loop. This...
High
Unreviewed
CVE-2017-9349
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an...
High
Unreviewed
CVE-2017-7705
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SLSK dissector could go into an infinite...
High
Unreviewed
CVE-2017-7746
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WSP dissector could go into an infinite loop...
High
Unreviewed
CVE-2017-7748
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SIGCOMP dissector could go into an infinite...
High
Unreviewed
CVE-2017-7745
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by...
High
Unreviewed
CVE-2017-7704
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite...
High
Unreviewed
CVE-2017-7702
was published
May 13, 2022
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop...
High
Unreviewed
CVE-2017-7701
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API