GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,927
Composer 4,272
Erlang 31
GitHub Actions 21
Go 2,047
Maven 5,232
npm 3,739
NuGet 668
pip 3,415
Pub 12
RubyGems 891
Rust 868
Swift 36

Unreviewed advisories

All unreviewed 238,403

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

259,330 advisories

Filter by severity

Sort by

Least recently updated

When the feature is configured, improper authorization in the Interactive Web Terminal in GitLab... High Unreviewed

CVE-2022-1944 was published Jun 7, 2022

An unauthenticated attacker could arbitrarily upload firmware files to the target device,... High Unreviewed

CVE-2022-31480 was published Jun 7, 2022

FUDforum 3.1.2 is vulnerable to Stored XSS via Forum Name field in Forum Manager Feature. Moderate Unreviewed

CVE-2022-30861 was published Jun 7, 2022

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows... High Unreviewed

CVE-2022-30735 was published Jun 8, 2022

Cross-site Scripting (XSS) - Stored in GitHub repository nocodb/nocodb prior to 0.91.7. Moderate Unreviewed

CVE-2022-2022 was published Jun 8, 2022

In ccu, there is a possible memory corruption due to a double free. This could lead to local... Moderate Unreviewed

CVE-2022-21758 was published Jun 7, 2022

An unauthenticated attacker can send a specially crafted network packet to delete a user from the... High Unreviewed

CVE-2022-31484 was published Jun 7, 2022

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows... Moderate Unreviewed

CVE-2022-30743 was published Jun 8, 2022

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 14... Moderate Unreviewed

CVE-2022-1783 was published Jun 7, 2022

Improper access control vulnerability in My Files prior to version 13.1.00.193 allows attackers... Moderate Unreviewed

CVE-2022-30731 was published Jun 8, 2022

server/wm/WindowManagerService.java in Android 6.x before 2016-09-01 does not enforce the... High Unreviewed

CVE-2016-3875 was published May 17, 2022

The IPv4 implementation in the Linux kernel before 3.18.8 does not properly consider the length... High Unreviewed

CVE-2015-1465 was published May 17, 2022

SQL injection vulnerability in Joomla! Component Contact Form Maker 1.0.1 allows remote attackers... Critical Unreviewed

CVE-2015-2798 was published May 17, 2022

Trend Micro Maximum Security 2022 is vulnerable to a link following vulnerability that could... High Unreviewed

CVE-2022-30687 was published May 28, 2022

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS... High Unreviewed

CVE-2022-26741 was published May 27, 2022

NetBSD maps the run-time link-editor ld.so directly below the stack region, even if ASLR is... Critical Unreviewed

CVE-2017-1000375 was published May 17, 2022

The web-based management interface on Cisco Small Business 220 devices with firmware before 1.0.1... High Unreviewed

CVE-2016-1472 was published May 17, 2022

internal/telephony/SMSDispatcher.java in Telephony in Android 4.x before 4.4.4, 5.0.x before 5.0... Moderate Unreviewed

CVE-2016-3883 was published May 17, 2022

The Synaptics touchscreen driver in Android before 2016-09-05 on Nexus 5X and 9 devices allows... High Unreviewed

CVE-2016-3865 was published May 17, 2022

Buffer overflow in codecs/on2/dec/SoftVPX.cpp in libstagefright in mediaserver in Android 4.x... High Unreviewed

CVE-2016-3872 was published May 17, 2022

CORE/HDD/src/wlan_hdd_wext.c in the Qualcomm Wi-Fi driver in Android before 2016-09-05 on Nexus... High Unreviewed

CVE-2016-3874 was published May 17, 2022

Unspecified vulnerability in Android before 2016-09-01 has unknown impact and attack vectors. Critical Unreviewed

CVE-2016-3877 was published May 17, 2022

Reporter.exe in Acunetix 8 allows remote attackers to cause a denial of service (application... Moderate Unreviewed

CVE-2017-11674 was published May 17, 2022

The Event List plugin 0.7.9 for WordPress has XSS in the slug array parameter to wp-admin/admin... Moderate Unreviewed

CVE-2017-12068 was published May 17, 2022

The Easy Testimonials plugin 3.0.4 for WordPress has XSS in include/settings/display.options.php,... Moderate Unreviewed

CVE-2017-12131 was published May 17, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

259,330 advisories