GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
370 advisories
Filter by severity
A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in...
High
Unreviewed
CVE-2019-11707
was published
May 24, 2022
Foxit PDF Reader and PDF Editor before 11.2.2 have a Type Confusion issue that causes a crash...
High
Unreviewed
CVE-2022-30557
was published
May 12, 2022
Type confusion in Blink in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and...
High
Unreviewed
CVE-2017-5059
was published
May 13, 2022
Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac,...
Moderate
Unreviewed
CVE-2017-5094
was published
May 13, 2022
Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0...
High
Unreviewed
CVE-2017-5070
was published
May 13, 2022
Type confusion in PDFium in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and...
High
Unreviewed
CVE-2017-5057
was published
May 13, 2022
Type confusion in PDFium in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and...
High
Unreviewed
CVE-2017-5108
was published
May 13, 2022
Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0...
High
Unreviewed
CVE-2017-5116
was published
May 13, 2022
CHECK-fail in SparseCross due to type confusion
Low
CVE-2021-29519
was published
for
tensorflow
(pip)
May 21, 2021
Passing in a non-string 'html' argument can lead to unsanitized output
Moderate
CVE-2021-32696
was published
for
striptags
(npm)
Jun 18, 2021
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in...
High
Unreviewed
CVE-2018-8279
was published
May 13, 2022
Prototype Pollution in json-ptr
Moderate
CVE-2021-23509
was published
for
json-ptr
(npm)
Nov 8, 2021
Clarify Content-Type handling
Low
CVE-2021-41190
was published
for
github.com/opencontainers/distribution-spec
(Go)
Nov 18, 2021
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of...
Critical
Unreviewed
CVE-2019-10231
was published
May 13, 2022
Prototype Pollution in node-jsonpointer
Moderate
CVE-2021-23807
was published
for
jsonpointer
(npm)
Nov 8, 2021
A remote code execution vulnerability exists in the way that the scripting engine handles objects...
High
Unreviewed
CVE-2019-0752
was published
May 13, 2022
Type confusion in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to...
High
Unreviewed
CVE-2021-38001
was published
Nov 24, 2021
A type confusion vulnerability could be triggered when resolving the "typeof" unary operator in...
Critical
Unreviewed
CVE-2021-24045
was published
Dec 14, 2021
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12...
High
Unreviewed
CVE-2019-6215
was published
May 13, 2022
The Clipboard::DispatchObject function in app/clipboard/clipboard.cc in Google Chrome before 5.0...
High
Unreviewed
CVE-2010-2299
was published
May 13, 2022
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12...
High
Unreviewed
CVE-2019-6214
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API