GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,410
Composer 4,676
Erlang 34
GitHub Actions 26
Go 2,263
Maven 5,528
npm 3,915
NuGet 705
pip 3,686
Pub 12
RubyGems 916
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,536

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

22,150 advisories

Filter by severity

Sort by

Least recently updated

MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in... Critical Unreviewed

CVE-2022-32081 was published Jul 2, 2022

MariaDB v10.7 was discovered to contain an use-after-poison in in __interceptor_memset at ... Critical Unreviewed

CVE-2022-32091 was published Jul 2, 2022

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2022-32093 was published Jul 2, 2022

Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in... Critical Unreviewed

CVE-2022-32032 was published Jul 2, 2022

In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer... Critical Unreviewed

CVE-2022-34835 was published Jul 1, 2022

A vulnerability classified as critical was found in Online Hotel Booking System Pro 1.2. Affected... Critical Unreviewed

CVE-2017-20125 was published Jul 1, 2022

EyesOfNetwork before 07-07-2021 has a Remote Code Execution vulnerability on the mail options... Critical Unreviewed

CVE-2021-40643 was published Jul 1, 2022

There is a buffer overflow in gps-sdr-sim v1.0 when parsing long command line parameters, which... Critical Unreviewed

CVE-2021-37778 was published Jul 1, 2022

Xiaongmai AHB7008T-MH-V2, AHB7804R-ELS, AHB7804R-MH-V2, AHB7808R-MS-V2, AHB7808R-MS, AHB7808T-MS... Critical Unreviewed

CVE-2021-41506 was published Jul 1, 2022

An IBM Spectrum Protect storage agent could allow a remote attacker to perform a brute force... Critical Unreviewed

CVE-2022-22487 was published Jul 1, 2022

Multiple command injection vulnerabilities exist in the web_server action endpoints... Critical Unreviewed

CVE-2022-33312 was published Jul 1, 2022

Multiple command injection vulnerabilities exist in the web_server action endpoints... Critical Unreviewed

CVE-2022-33314 was published Jul 1, 2022

Multiple command injection vulnerabilities exist in the web_server action endpoints... Critical Unreviewed

CVE-2022-33313 was published Jul 1, 2022

Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities... Critical Unreviewed

CVE-2022-33326 was published Jul 1, 2022

Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities... Critical Unreviewed

CVE-2022-33325 was published Jul 1, 2022

Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities... Critical Unreviewed

CVE-2022-33328 was published Jul 1, 2022

Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities... Critical Unreviewed

CVE-2022-33327 was published Jul 1, 2022

Multiple command injection vulnerabilities exist in the web_server ajax endpoints functionalities... Critical Unreviewed

CVE-2022-33329 was published Jul 1, 2022

A data removal vulnerability exists in the web_server /action/remove/ API functionality of... Critical Unreviewed

CVE-2022-28127 was published Jul 1, 2022

By using a specific credential string, an attacker with network access to the device’s web... Critical Unreviewed

CVE-2022-2197 was published Jul 1, 2022

There is an object injection vulnerability in swfupload plugin for wordpress. Critical Unreviewed

CVE-2013-4144 was published Jul 1, 2022

A command execution vulnerability exists in the clish art2 functionality of Robustel R1510 3.3.0.... Critical Unreviewed

CVE-2022-32585 was published Jul 1, 2022

In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary... Critical Unreviewed

CVE-2013-4561 was published Jul 1, 2022

In ILIAS through 7.10, lack of verification when changing an email address (on the Profile Page)... Critical Unreviewed

CVE-2022-31266 was published Jun 30, 2022

A vulnerability, which was classified as critical, was found in Teleopti WFM 7.1.0. This affects... Critical Unreviewed

CVE-2017-20111 was published Jun 30, 2022

Previous 1 2 … 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

22,150 advisories