GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
46 advisories
Filter by severity
Vulnerable dependencies in Nokogiri
High
GHSA-fq42-c5rg-92c2
was published
for
nokogiri
(RubyGems)
Feb 25, 2022
Use after free in libpulse-binding
High
GHSA-ghpq-vjxw-ch5w
was published
for
libpulse-binding
(Rust)
Aug 25, 2021
Use after free in Apache Mesos
High
CVE-2017-9790
was published
for
org.apache.mesos:mesos
(Maven)
May 13, 2022
Reflected Cross-site Scripting in ACS Commons
High
CVE-2021-21028
was published
for
com.adobe.acs:acs-aem-commons
(Maven)
Feb 2, 2021
Use after free in CefSharp
High
CVE-2020-16017
was published
for
CefSharp.Common
(NuGet)
Nov 27, 2020
Use after free in generic-array
High
CVE-2020-36465
was published
for
generic-array
(Rust)
Aug 25, 2021
Use after free in Animation
High
CVE-2022-0609
was published
for
CefSharp.Common
(NuGet)
Feb 22, 2022
GPGME Go wrapper contains Use After Free
High
CVE-2020-8945
was published
for
github.com/proglottis/gpgme
(Go)
May 18, 2021
futures_task::waker may cause a use-after-free if used on a type that isn't 'static
High
CVE-2020-35906
was published
for
futures-task
(Rust)
May 24, 2022
Use After Free in libpulse-binding
High
CVE-2018-25028
was published
for
libpulse-binding
(Rust)
Jan 6, 2022
Use After Free in libpulse-binding
High
CVE-2018-25027
was published
for
libpulse-binding
(Rust)
Jan 6, 2022
Use After Free in tremor-script
High
CVE-2021-45702
was published
for
tremor-script
(Rust)
Jan 6, 2022
Use after free in string-interner
High
CVE-2019-16882
was published
for
string-interner
(Rust)
Aug 25, 2021
ProTip!
Advisories are also available from the
GraphQL API