GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,757
Erlang
35
GitHub Actions
29
Go
2,327
Maven
5,000+
npm
3,960
NuGet
712
pip
3,741
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
2,800 advisories
Filter by severity
H2O Vulnerable to Denial of Service (DoS) via `/3/ImportFiles` Endpoint
High
CVE-2024-7768
was published
for
ai.h2o:h2o-core
(Maven)
Mar 20, 2025
A vulnerability in danswer-ai/danswer version 1 allows an attacker to perform a Regular...
High
Unreviewed
CVE-2024-7779
was published
Mar 20, 2025
Open WebUI Unauthenticated Multipart Boundary Denial of Service (DoS) Vulnerability in api/chat/file
High
GHSA-6wj5-5pgr-jwq8
was published
for
open-webui
(pip)
Mar 20, 2025
A vulnerability in open-webui/open-webui v0.3.8 allows an unauthenticated attacker to sign up...
High
Unreviewed
CVE-2024-7036
was published
Mar 20, 2025
MLflow Uncontrolled Resource Consumption vulnerability
Moderate
CVE-2024-6838
was published
for
mlflow
(pip)
Mar 20, 2025
Ollama Vulnerable to Denial of Service (DoS) via Crafted GZIP
High
CVE-2024-12886
was published
for
github.com/ollama/ollama
(Go)
Mar 20, 2025
Aim Uncontrolled Resource Consumption vulnerability
High
CVE-2024-12778
was published
for
aim
(pip)
Mar 20, 2025
LlamaIndex Uncontrolled Resource Consumption vulnerability
Moderate
CVE-2024-12910
was published
for
llama-index
(pip)
Mar 20, 2025
Open WebUI has vulnerable dependency on starlette via fastapi
High
GHSA-w466-2wfc-8g58
was published
for
open-webui
(pip)
Mar 20, 2025
A Denial of Service (DoS) vulnerability was discovered in the file upload feature of netease...
High
Unreviewed
CVE-2024-12864
was published
Mar 20, 2025
imaginAIry Denial of Service (DoS) vulnerability
High
CVE-2024-12761
was published
for
imaginAIry
(pip)
Mar 20, 2025
Open WebUI Uncontrolled Resource Consumption vulnerability
High
CVE-2024-12534
was published
for
open-webui
(npm)
Mar 20, 2025
Open WebUI Uncontrolled Resource Consumption vulnerability
High
CVE-2024-12537
was published
for
open-webui
(npm)
Mar 20, 2025
BentoML vulnerable to Uncontrolled Resource Consumption
High
GHSA-hh3j-9m59-p8vc
was published
for
bentoml
(pip)
Mar 20, 2025
A Denial of Service (DoS) vulnerability exists in the file upload feature of haotian-liu/llava,...
High
Unreviewed
CVE-2024-12070
was published
Mar 20, 2025
A Denial of Service (DoS) vulnerability was discovered in the file upload feature of...
Moderate
Unreviewed
CVE-2024-12074
was published
Mar 20, 2025
A Denial of Service (DoS) vulnerability exists in the file upload feature of imartinez/privategpt...
High
Unreviewed
CVE-2024-12063
was published
Mar 20, 2025
A Regular Expression Denial of Service (ReDoS) vulnerability exists in gaizhenbiao/chuanhuchatgpt...
Moderate
Unreviewed
CVE-2024-10955
was published
Mar 20, 2025
A Denial of Service (DoS) vulnerability exists in the file upload feature of binary-husky...
Moderate
Unreviewed
CVE-2024-11033
was published
Mar 20, 2025
A vulnerability in danny-avila/librechat version git a1647d7 allows an unauthenticated attacker...
High
Unreviewed
CVE-2024-11172
was published
Mar 20, 2025
FastChat Denial of Service vulnerability
High
CVE-2024-10912
was published
for
fschat
(pip)
Mar 20, 2025
InvokeAI Uncontrolled Resource Consumption vulnerability
High
CVE-2024-11043
was published
for
InvokeAI
(pip)
Mar 20, 2025
FastChat Uncontrolled Resource Consumption vulnerability
High
CVE-2024-10907
was published
for
fschat
(pip)
Mar 20, 2025
automatic1111/stable-diffusion-webui version 1.10.0 contains a vulnerability where the server...
High
Unreviewed
CVE-2024-10935
was published
Mar 20, 2025
vllm-project vllm version 0.5.2.2 is vulnerable to Denial of Service attacks. The issue occurs in...
High
Unreviewed
CVE-2024-11040
was published
Mar 20, 2025
ProTip!
Advisories are also available from the
GraphQL API