GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
398 advisories
Filter by severity
DNN Path Traversal via Zip Slip
High
CVE-2020-5187
was published
for
DotNetNuke.Core
(NuGet)
May 24, 2022
ChakraCore RCE Vulnerability
High
CVE-2020-0767
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ChakraCore RCE Vulnerability
High
CVE-2020-0711
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ChakraCore RCE Vulnerability
High
CVE-2020-0710
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ChakraCore RCE Vulnerability
High
CVE-2020-0713
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
ChakraCore RCE Vulnerability
High
CVE-2020-0712
was published
for
Microsoft.ChakraCore
(NuGet)
May 24, 2022
Remote code execution in ASP.NET Core
High
CVE-2020-0603
was published
for
Microsoft.AspNetCore.All
(NuGet)
May 24, 2022
Remote code execution in Microsoft.WindowsDesktop.App.Ref
High
CVE-2020-0606
was published
for
Microsoft.WindowsDesktop.App.Ref
(NuGet)
May 24, 2022
Denial of service in ASP.NET Core
High
CVE-2019-0981
was published
for
System.Private.Uri
(NuGet)
May 24, 2022
Denial of service in ASP.NET Core
High
CVE-2019-0982
was published
for
Microsoft.AspNetCore.SignalR.Protocols.MessagePack
(NuGet)
May 24, 2022
Denial of service in ASP.NET Core
High
CVE-2019-0980
was published
for
System.Private.Uri
(NuGet)
May 24, 2022
SiteServer CMS RCE via unsafe file upload
High
CVE-2019-11401
was published
for
sscms
(NuGet)
May 24, 2022
Umbraco CMS vulnerable to CSRF
High
CVE-2015-8813
was published
for
Umbraco.CMS
(NuGet)
May 17, 2022
Umbraco CMS vulnerable to CSRF
High
CVE-2015-8814
was published
for
Umbraco.CMS
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-0224
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-0235
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-0234
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-0236
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-11801
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-11797
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-11792
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-11821
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-11806
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-11807
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ChakraCore RCE Vulnerability
High
CVE-2017-11796
was published
for
Microsoft.ChakraCore
(NuGet)
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API