GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

365 advisories

High

CVE-2022-43396 was published for org.apache.kylin:kylin (Maven) Dec 30, 2022

Critical

CVE-2022-46421 was published for apache-airflow-providers-apache-hive (pip) Dec 20, 2022

Critical

CVE-2022-24377 was published for cycle-import-check (npm) Dec 14, 2022

Critical

CVE-2022-45907 was published for torch (pip) Nov 26, 2022

Critical

CVE-2022-45462 was published for org.apache.dolphinscheduler:dolphinscheduler-alert-plugins (Maven) Nov 23, 2022

High

CVE-2022-42906 was published for powerline-gitstatus (pip) Oct 13, 2022

High

CVE-2022-39243 was published for com.zaxxer:nuprocess (Maven) Sep 30, 2022

Critical

CVE-2022-25765 was published for pdfkit (RubyGems) Sep 10, 2022

High

CVE-2022-28220 was published for org.apache.james:james-server (Maven) Sep 9, 2022

Critical

CVE-2022-21165 was published for font-converter (npm) Aug 29, 2022

High

CVE-2022-36633 was published for github.com/gravitational/teleport (Go) Aug 25, 2022

Moderate

CVE-2022-35954 was published for @actions/core (npm) Aug 18, 2022

Critical

CVE-2022-21186 was published for @acrontum/filesystem-template (npm) Aug 6, 2022

Critical

CVE-2020-28434 was published for gitblame (npm) Aug 3, 2022

Critical

CVE-2020-28437 was published for heroku-env (npm) Aug 3, 2022

Critical

CVE-2020-28433 was published for node-latex-pdf (npm) Aug 3, 2022

Critical

CVE-2020-28451 was published for image-tiler (npm) Aug 3, 2022

Critical

CVE-2020-28425 was published for curljs (npm) Aug 3, 2022

Critical

CVE-2020-7795 was published for get-npm-package-version (npm) Aug 3, 2022

Critical

CVE-2020-28453 was published for npos-tesseract (npm) Aug 3, 2022

Critical

CVE-2020-28423 was published for monorepo-build (npm) Aug 3, 2022

High

CVE-2020-28422 was published for git-archive (npm) Jul 26, 2022

Critical

CVE-2020-28435 was published for ffmpeg-sdk (npm) Jul 26, 2022

Critical

CVE-2020-28436 was published for google-cloudstorage-commands (npm) Jul 26, 2022

Critical

CVE-2020-28438 was published for deferred-exec (npm) Jul 26, 2022

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

365 advisories

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

365 advisories

Uh oh!