GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,898
Composer 4,476
Erlang 33
GitHub Actions 24
Go 2,203
Maven 5,431
npm 3,852
NuGet 696
pip 3,637
Pub 12
RubyGems 911
Rust 913
Swift 38

Unreviewed advisories

All unreviewed 249,040

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

249,040 advisories

Filter by severity

Sort by

Least recently updated

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Low Unreviewed

CVE-2023-23541 was published Jul 6, 2023

A privacy issue was addressed with improved private data redaction for log entries. This issue is... Moderate Unreviewed

CVE-2023-23542 was published May 8, 2023

Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP... Critical Unreviewed

CVE-2022-37042 was published Aug 13, 2022

IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS could allow a remote attacker to cause a denial of... High Unreviewed

CVE-2023-26285 was published May 5, 2023

SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via... Critical Unreviewed

CVE-2022-29303 was published May 13, 2022

Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET... Critical Unreviewed

CVE-2023-25717 was published Feb 13, 2023

Multiple API endpoints in Atlassian Bitbucket Server and Data Center 7.0.0 before version 7.6.17,... High Unreviewed

CVE-2022-36804 was published Aug 26, 2022

In SugarCRM before 12.0. Hotfix 91155, a crafted request can inject custom PHP code through the... High Unreviewed

CVE-2023-22952 was published Jan 11, 2023

IBM i 7.2, 7.3, 7.4, and 7.5 could allow an authenticated privileged administrator to gain... High Unreviewed

CVE-2023-23470 was published May 4, 2023

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... High Unreviewed

CVE-2022-32893 was published Aug 25, 2022

Zoho ManageEngine ADSelfService Plus before 6122 allows an authenticated user to achieve remote... High Unreviewed

CVE-2022-28810 was published Apr 19, 2022

An arbitrary file upload vulnerability in Trend Micro Apex Central could allow an unauthenticated... Critical Unreviewed

CVE-2022-26871 was published Mar 30, 2022

The vCenter Server contains an arbitrary file upload vulnerability in the Analytics service. A... Critical Unreviewed

CVE-2021-22005 was published May 24, 2022

D-Link DIR-820L 1.05B03 was discovered to contain a remote command execution (RCE) vulnerability... Critical Unreviewed

CVE-2022-26258 was published Mar 29, 2022

The TP-240 (aka tp240dvr) component in Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business... Critical Unreviewed

CVE-2022-26143 was published Mar 11, 2022

Zimbra Collaboration (aka ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP... High Unreviewed

CVE-2022-27925 was published Apr 22, 2022

Server Side Request Forgery in vRealize Operations Manager API (CVE-2021-21975) prior to 8.4 may... High Unreviewed

CVE-2021-21975 was published May 24, 2022

A memory corruption issue was addressed with improved input validation. This issue is fixed in... High Unreviewed

CVE-2020-27930 was published May 24, 2022

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed

CVE-2020-9818 was published May 24, 2022

A memory consumption issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed

CVE-2020-9819 was published May 24, 2022

OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401... Critical Unreviewed

CVE-2020-3992 was published May 24, 2022

The XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to... High Unreviewed

CVE-2015-1130 was published May 17, 2022

IBM Aspera Faspex 5.0.0 through 5.0.10 does not require that users should have strong passwords... Moderate Unreviewed

CVE-2023-37398 was published Jan 29, 2025

IBM Aspera Faspex 5.0.0 through 5.0.10 does not require that users should have strong passwords... Moderate Unreviewed

CVE-2023-35907 was published Jan 29, 2025

IBM Aspera Faspex 5.0.0 through 5.0.10 could allow a privileged user to make system changes... Moderate Unreviewed

CVE-2023-37412 was published Jan 29, 2025

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

249,040 advisories