GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
5,926 advisories
Apache Commons FileUpload, Apache Commons FileUpload: FileUpload DoS via part headers
High
CVE-2025-48976
was published
for
commons-fileupload:commons-fileupload
(Maven)
Jun 16, 2025
PowSyBl Core XML Reader allows XXE and SSRF
Low
CVE-2025-47293
was published
for
com.powsybl:powsybl-commons
(Maven)
Jun 19, 2025
PowSyBl Core allows deserialization of untrusted SparseMatrix data
High
CVE-2025-47771
was published
for
com.powsybl:powsybl-math
(Maven)
Jun 19, 2025
PowSyBl Core contains Polynomial REDoS’es
Moderate
CVE-2025-48058
was published
for
com.powsybl:powsybl-commons
(Maven)
Jun 19, 2025
PowSyBl Core Contains a Polynomial ReDoS in RegexCriterion
Low
CVE-2025-48059
was published
for
com.powsybl:powsybl-contingency-api
(Maven)
Jun 19, 2025
Quarkus potentially leaks data when duplicating a duplicated context
Moderate
CVE-2025-49574
was published
for
io.quarkus:quarkus-vertx
(Maven)
Jun 23, 2025
Allure Report allows Improper XXE Restriction via DocumentBuilderFactory
High
CVE-2025-52888
was published
for
io.qameta.allure.plugins:junit-xml-plugin
(Maven)
Jun 25, 2025
ProTip!
Advisories are also available from the
GraphQL API