GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
5,926 advisories
Security Advisory for "Log4Shell"
Critical
GHSA-v57x-gxfj-484q
was published
for
com.hazelcast.jet:hazelcast-jet
(Maven)
Jan 21, 2022
Trust Boundary Violation due to Incomplete Blacklist in Test Failure Processing in Ares
High
GHSA-883x-6fch-6wjx
was published
for
de.tum.in.ase:artemis-java-test-sandbox
(Maven)
Jan 21, 2022
Remote code injection, Improper Input Validation and Uncontrolled Recursion in Log4j library
Critical
GHSA-3qpm-h9ch-px3c
was published
for
org.powernukkit:powernukkit
(Maven)
Jan 6, 2022
Stored Cross-Site Scripting (XSS) in Keycloak via groups dropdown
Moderate
GHSA-755v-r4x4-qf7m
was published
for
org.keycloak:keycloak-core
(Maven)
Nov 29, 2022
Apache Log4j Remote Code Execution
Critical
GHSA-mf4f-j588-5xm8
was published
for
org.opencastproject:opencast-common
(Maven)
Dec 14, 2021
Regular expression Denial of Service (ReDoS) in EmailValidator class in V7 compatibility module in Vaadin 8
High
GHSA-jfmf-w293-8xr8
was published
for
com.vaadin:vaadin-bom
(Maven)
Oct 13, 2021
Timing side channel vulnerability in endpoint request handler in Vaadin 15-19
Moderate
GHSA-9h6g-6mxg-vvp4
was published
for
com.vaadin:vaadin-bom
(Maven)
Apr 19, 2021
ProTip!
Advisories are also available from the
GraphQL API