Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
50
GitHub Actions
50
Go
3,673
Maven
5,000+
npm
5,000+
NuGet
932
pip
4,891
Pub
13
RubyGems
1,051
Rust
1,315
Swift
53
Unreviewed advisories
All unreviewed
5,000+

16 advisories

Loading
PocketMine-MP: Network amplification vulnerability with `ActorEventPacket` Moderate
GHSA-7hmv-4j2j-pp6f was published for pocketmine/pocketmine-mp (Composer) Apr 6, 2026
dktapps Credited to dktapps
OpenClaw: Unauthorized Telegram Senders Trigger Media Download and Disk Write Before Access Check Moderate
GHSA-h656-5vcf-cm23 was published for openclaw (npm) Mar 3, 2026
v8hid Credited to v8hid
DoS Vulnerability in ntpd-rs Moderate
CVE-2025-58066 was published for ntpd-rs (Rust) Aug 29, 2025
Possible External Service Interaction attack in iManager has been discovered in OpenText™... High Unreviewed
CVE-2021-38135 was published Nov 22, 2024
An issue was discovered in Technitium through 11.0.2. The forwarding mode enables attackers to... High Unreviewed
CVE-2023-28455 was published Sep 18, 2024
Technitium 11.5.3 allows remote attackers to cause a denial of service (bandwidth amplification)... High Unreviewed
CVE-2023-49203 was published Sep 18, 2024
An issue was discovered in Technitium through 11.0.2. It enables attackers to launch... High Unreviewed
CVE-2023-28456 was published Sep 18, 2024
IBM MQ 9.2 LTS, 9.3 LTS, and 9.3 CD Internet Pass-Thru could allow a remote user to cause a... High Unreviewed
CVE-2024-25015 was published May 1, 2024
A vulnerability, which was classified as problematic, has been found in drybjed ansible-ntp.... Moderate Unreviewed
CVE-2014-125036 was published Jan 2, 2023
A PAN-OS URL filtering policy misconfiguration could allow a network-based attacker to conduct... High Unreviewed
CVE-2022-0028 was published Aug 11, 2022
A denial of service vulnerability was discovered in nbdkit 1.12.7, 1.14.1 and 1.15.1. An attacker... Low Unreviewed
CVE-2019-14850 was published May 24, 2022
Jenkins vulnerable to UDP amplification reflection attack Moderate
CVE-2020-2100 was published for org.jenkins-ci.main:jenkins-core (Maven) May 24, 2022
NotMyFault Credited to NotMyFault
eProsima Fast DDS versions prior to 2.4.0 (#2269) are susceptible to exploitation when an... Critical Unreviewed
CVE-2021-38425 was published May 6, 2022
OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted... Critical Unreviewed
CVE-2021-38429 was published May 6, 2022
TwinOaks Computing CoreDX DDS versions prior to 5.9.1 are susceptible to exploitation when an... High Unreviewed
CVE-2021-43547 was published May 6, 2022
RTI Connext DDS Professional, Connext DDS Secure versions 4.2x to 6.1.0, and Connext DDS Micro... Critical Unreviewed
CVE-2021-38487 was published May 6, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database