GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,410
Composer 4,676
Erlang 34
GitHub Actions 26
Go 2,263
Maven 5,528
npm 3,915
NuGet 705
pip 3,686
Pub 12
RubyGems 916
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,536

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22,150 advisories

Filter by severity

Sort by

Least recently updated

Tenda AC23 v16.03.07.44 is vulnerable to Stack Overflow that will allow for the execution of... Critical Unreviewed

CVE-2022-32385 was published Jul 7, 2022

Tenda AC23 v16.03.07.44 was discovered to contain a buffer overflow via fromAdvSetMacMtuWan. Critical Unreviewed

CVE-2022-32386 was published Jul 7, 2022

Tenda AC23 v16.03.07.44 was discovered to contain a stack overflow via the AdvSetMacMtuWan function. Critical Unreviewed

CVE-2022-32383 was published Jul 7, 2022

In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This... Critical Unreviewed

CVE-2022-20083 was published Jul 7, 2022

In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could... Critical Unreviewed

CVE-2022-21744 was published Jul 7, 2022

The udpserver in H3C Magic R100 V200R004 and V100R005 has the 9034 port opened, allowing... Critical Unreviewed

CVE-2022-34598 was published Jul 7, 2022

Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability via the... Critical Unreviewed

CVE-2022-34597 was published Jul 7, 2022

Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the... Critical Unreviewed

CVE-2022-34595 was published Jul 7, 2022

Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the... Critical Unreviewed

CVE-2022-34596 was published Jul 7, 2022

OTFCC v0.10.4 was discovered to contain a heap buffer overflow after free via otfccbuild.c. Critical Unreviewed

CVE-2022-33047 was published Jul 7, 2022

A insecure configuration for certificate verification (http.verify_mode = OpenSSL::SSL:... Critical Unreviewed

CVE-2014-8164 was published Jul 7, 2022

ASUS RT-A88U 3.0.0.4.386_45898 is vulnerable to Cross Site Scripting (XSS). The ASUS router admin... Critical Unreviewed

CVE-2021-43702 was published Jul 6, 2022

An arbitrary file upload vulnerability in Dice v4.2.0 allows attackers to execute arbitrary code... Critical Unreviewed

CVE-2022-32413 was published Jul 6, 2022

Newsletter Module v3.x was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2022-31856 was published Jul 6, 2022

So Filter Shop v3.x was discovered to contain multiple blind SQL injection vulnerabilities via... Critical Unreviewed

CVE-2022-34972 was published Jul 6, 2022

Ingredient Stock Management System v1.0 was discovered to contain a SQL injection vulnerability... Critical Unreviewed

CVE-2022-32311 was published Jul 6, 2022

An access control issue in Ingredient Stock Management System v1.0 allows attackers to take over... Critical Unreviewed

CVE-2022-32310 was published Jul 6, 2022

** DISPUTED ** md2roff 1.7 has a stack-based buffer overflow via a Markdown file containing a... Critical Unreviewed

CVE-2022-34913 was published Jul 3, 2022

SQL Injection vulnerability in viaviwebtech Android EBook App (Books App, PDF, ePub, Online Book... Critical Unreviewed

CVE-2021-32428 was published Jul 2, 2022

On Ampere Altra and AltraMax devices before SRP 1.09, the the Altra reference design of UEFI... Critical Unreviewed

CVE-2022-32295 was published Jul 2, 2022

A user with administrative privileges in Distributed Data Systems WebHMI 4.1.1.7662 may send OS... Critical Unreviewed

CVE-2022-2253 was published Jul 2, 2022

A critical issue has been discovered in GitLab affecting all versions starting from 14.0 prior to... Critical Unreviewed

CVE-2022-2185 was published Jul 2, 2022

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2022-32095 was published Jul 2, 2022

PDFAlto v0.4 was discovered to contain a heap buffer overflow via the component /pdfalto/src... Critical Unreviewed

CVE-2022-32324 was published Jul 2, 2022

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2022-32094 was published Jul 2, 2022

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

22,150 advisories