Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

4,034 advisories

Loading
Joplin Vulnerable to Code Injection Critical
CVE-2022-23340 was published for joplin (npm) Feb 9, 2022
Code injection in ShenYu Critical
CVE-2021-45029 was published for org.apache.shenyu:shenyu-common (Maven) Jan 28, 2022
Withdrawn: Code Injection in loguru Low
CVE-2022-0329 was published for loguru (pip) Jan 28, 2022 withdrawn
Server Side Twig Template Injection Critical
CVE-2022-21686 was published for prestashop/prestashop (Composer) Jan 27, 2022
Brum3ns
Mustache remote code injection vulnerability High
CVE-2022-0323 was published for mustache/mustache (Composer) Jan 27, 2022
Code Injection in microweber High
CVE-2022-0282 was published for microweber/microweber (Composer) Jan 21, 2022
october/system arbitrary code execution High
CVE-2021-32650 was published for october/system (Composer) Jan 14, 2022
sushiwushi
October/System authenticated file write leads to remote code execution High
CVE-2021-32649 was published for october/system (Composer) Jan 14, 2022
cydave
Microsoft SharePoint Server Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21837 was published Jan 12, 2022
Microsoft Office Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21840 was published Jan 12, 2022
Microsoft Word Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21842 was published Jan 12, 2022
Windows Security Center API Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21874 was published Jan 12, 2022
Windows Geolocation Service Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21878 was published Jan 12, 2022
HEVC Video Extensions Remote Code Execution Vulnerability. High Unreviewed
CVE-2022-21917 was published Jan 12, 2022
ProTip! Advisories are also available from the GraphQL API