Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
47
Go
3,295
Maven
5,000+
npm
5,000+
NuGet
876
pip
4,524
Pub
12
RubyGems
1,008
Rust
1,194
Swift
51
Unreviewed advisories
All unreviewed
5,000+

3 advisories

Loading
Unintended leak of Proxy-Authorization header in requests Moderate
CVE-2023-32681 was published for requests (pip) May 22, 2023
SmashITs Credited to SmashITs, tobiasfunke1, sethmlarson, and nateprewitt tobiasfunke1 tobiasfunke1
sethmlarson sethmlarson nateprewitt nateprewitt
Requests vulnerable to .netrc credentials leak via malicious URLs Moderate
CVE-2024-47081 was published for requests (pip) Jun 9, 2025
sethmlarson Credited to sethmlarson, jupenur, nateprewitt, and sigmavirus24 jupenur jupenur
nateprewitt nateprewitt sigmavirus24 sigmavirus24
Requests `Session` object does not verify requests after making first request with verify=False Moderate
CVE-2024-35195 was published for requests (pip) May 20, 2024
mikeassel Credited to mikeassel, sigmavirus24, nateprewitt, and liiiiiiaduarte34-art sigmavirus24 sigmavirus24
nateprewitt nateprewitt liiiiiiaduarte34-art liiiiiiaduarte34-art
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database