Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,844
Maven
5,000+
npm
4,470
NuGet
779
pip
4,231
Pub
12
RubyGems
974
Rust
1,093
Swift
48
Unreviewed advisories
All unreviewed
5,000+

3,117 advisories

Loading
ChatterBot Vulnerable to Denial of Service via Database Connection Pool Exhaustion High
CVE-2026-23842 was published for chatterbot (pip) Jan 20, 2026
AdityaBhatt3010
Credited to AdityaBhatt3010
Pterodactyl improperly locks resources allowing raced queries to create more resources than alloted Moderate
CVE-2025-69198 was published for pterodactyl/panel (Composer) Jan 20, 2026
vsevolodmelnyk
Credited to vsevolodmelnyk
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition.... High Unreviewed
CVE-2025-9280 was published Jan 20, 2026
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition.... High Unreviewed
CVE-2025-9465 was published Jan 20, 2026
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition.... High Unreviewed
CVE-2025-9283 was published Jan 20, 2026
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition.... High Unreviewed
CVE-2025-9466 was published Jan 20, 2026
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition.... High Unreviewed
CVE-2025-9281 was published Jan 20, 2026
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition.... High Unreviewed
CVE-2025-9279 was published Jan 20, 2026
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition.... High Unreviewed
CVE-2025-9278 was published Jan 20, 2026
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition.... High Unreviewed
CVE-2025-9282 was published Jan 20, 2026
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition.... High Unreviewed
CVE-2025-9464 was published Jan 20, 2026
A vulnerability was determined in birkir prime up to 0.4.0.beta.0. This affects an unknown... Moderate Unreviewed
CVE-2026-1174 was published Jan 19, 2026
A security flaw has been discovered in Open5GS up to 2.7.5. This issue affects some unknown... Moderate Unreviewed
CVE-2025-15532 was published Jan 17, 2026
CVE-2026-0517 is a denial-of-service vulnerability in versions of Secure Access Server prior to... Moderate Unreviewed
CVE-2026-0517 was published Jan 17, 2026
pyasn1 has a DoS vulnerability in decoder High
CVE-2026-23490 was published for pyasn1 (pip) Jan 16, 2026
tsigouris007
Credited to tsigouris007
An issue in nanomq v0.22.7 allows attackers to cause a Denial of Service (DoS) via a crafted... High Unreviewed
CVE-2024-48077 was published Jan 15, 2026
SvelteKit is vulnerable to denial of service and possible SSRF when using prerendering High
CVE-2025-67647 was published for @sveltejs/adapter-node (npm) Jan 15, 2026
cold-try teemingc
benmccann d-xuan
Credited to cold-try, teemingc, benmccann, and d-xuan
A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability... Low Unreviewed
CVE-2026-0992 was published Jan 15, 2026
jsdiff has a Denial of Service vulnerability in parsePatch and applyPatch Low
GHSA-73rr-hh4g-fpgx was published for diff (npm) Jan 14, 2026
guiyi-he ExplodingCabbage
G-Rath
Credited to guiyi-he, ExplodingCabbage, and G-Rath
Paessler PRTG Network Monitor before 25.4.114 allows Denial-of-Service (DoS) by an authenticated... Moderate Unreviewed
CVE-2025-67835 was published Jan 14, 2026
The vulnerability exists in BLUVOYIX due to design flaws in the email sending API. An... Critical Unreviewed
CVE-2026-22239 was published Jan 14, 2026
go-ethereum is vulnerable to high CPU usage leading to DoS via malicious p2p message High
CVE-2026-22868 was published for github.com/ethereum/go-ethereum (Go) Jan 13, 2026
Yenya030
Credited to Yenya030
Denial-of-service in the DOM: Service Workers component. This vulnerability affects Firefox < 147. High Unreviewed
CVE-2026-0889 was published Jan 13, 2026
A vulnerability has been identified in SIMATIC ET 200AL IM 157-1 PN (6ES7157-1AB00-0AB0) (All... High Unreviewed
CVE-2025-40944 was published Jan 13, 2026
pypdf has possible long runtimes for malformed startxref Low
CVE-2026-22691 was published for pypdf (pip) Jan 9, 2026
mkaalto stefan6419846
Credited to mkaalto and stefan6419846
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database