GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,671
Composer 5,012
Erlang 39
GitHub Actions 38
Go 2,655
Maven 6,111
npm 4,284
NuGet 760
pip 4,067
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,404

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,041 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A code injection in Nextcloud Desktop Client 2.6.4 allowed to load arbitrary code when placing a... Moderate Unreviewed

CVE-2020-8224 was published May 24, 2022

In JetBrains YouTrack before 2020.1.1331, an external user could execute commands against... Moderate Unreviewed

CVE-2020-15817 was published May 24, 2022

Zyxel VMG5313-B30B router on firmware 5.13(ABCJ.6)b3_1127, and possibly older versions of... Moderate Unreviewed

CVE-2020-24354 was published May 24, 2022

A Remote Code Execution vulnerability exists in the SAP NetWeaver (ABAP Server, up to release 7... Moderate Unreviewed

CVE-2020-6318 was published May 24, 2022

Citrix Secure Mail for Android before 20.11.0 suffers from Improper Control of Generation of Code... Moderate Unreviewed

CVE-2020-8274 was published May 24, 2022

A flaw was found in the Linux kernel in versions prior to 5.10. A violation of memory access was... Moderate Unreviewed

CVE-2021-3411 was published May 24, 2022

XStream is vulnerable to a Remote Command Execution attack Moderate

CVE-2021-21345 was published for com.thoughtworks.xstream:xstream (Maven) Mar 22, 2021

A vulnerability was found in Moodle where javaScript injection was possible in some Mustache... Moderate Unreviewed

CVE-2019-14827 was published May 24, 2022

Froxlor vulnerable to code injection Moderate

CVE-2022-3869 was published for froxlor/froxlor (Composer) Nov 5, 2022

In JetBrains IntelliJ IDEA before 2022.1 local code execution via custom Pandoc path was possible Moderate Unreviewed

CVE-2022-29813 was published Apr 29, 2022

In JetBrains IntelliJ IDEA before 2022.1 local code execution via workspace settings was possible Moderate Unreviewed

CVE-2022-29815 was published Apr 29, 2022

A vulnerability was reported in Lenovo Smart Camera X3, X5, and C2E that could allow code... Moderate Unreviewed

CVE-2021-3615 was published May 24, 2022

ipchat.php in Invision Power Board 1.1.1 allows remote attackers to execute arbitrary PHP code,... Moderate Unreviewed

CVE-2003-1385 was published Apr 29, 2022

PHP remote file inclusion vulnerability in email.php (aka email.php3) in Cedric Email Reader 0.2... Moderate Unreviewed

CVE-2003-1410 was published Apr 29, 2022

PHP remote file inclusion vulnerability in index.php for GONiCUS System Administrator (GOsa) 1.0... Moderate Unreviewed

CVE-2003-1412 was published Apr 29, 2022

Multiple PHP remote file inclusion vulnerabilities in ttCMS 2.2 and ttForum allow remote... Moderate Unreviewed

CVE-2003-1459 was published Apr 29, 2022

PHP remote file inclusion vulnerability in nukebrowser.php in Nukebrowser 2.1 to 2.5 allows... Moderate Unreviewed

CVE-2003-1436 was published Apr 29, 2022

PHP remote file inclusion vulnerability in emailreader_execute_on_each_page.inc.php in Cedric... Moderate Unreviewed

CVE-2003-1411 was published Apr 29, 2022

PHP remote file inclusion vulnerability in ZeroBoard 4.1pl4 and earlier allows remote attackers... Moderate Unreviewed

CVE-2004-1419 was published Apr 29, 2022

An improper control of generation of code vulnerability [CWE-94] in FortiClientMacOS versions 7.0... Moderate Unreviewed

CVE-2021-42754 was published May 24, 2022

The Loco Translate WordPress plugin before 2.5.4 mishandles data inputs which get saved to a file... Moderate Unreviewed

CVE-2021-24721 was published May 24, 2022

PHP remote file inclusion vulnerability in authform.inc.php in PHProjekt 4.2.3 and earlier allows... Moderate Unreviewed

CVE-2004-2740 was published Apr 29, 2022

PHP remote file inclusion vulnerability in artlist.php in Thatware 0.5.2 and 0.5.3 allows remote... Moderate Unreviewed

CVE-2002-2297 was published Apr 30, 2022

PHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote... Moderate Unreviewed

CVE-2002-2298 was published Apr 30, 2022

PHP remote file inclusion vulnerability in thatfile.php in Thatware 0.3 through 0.5.2 allows... Moderate Unreviewed

CVE-2002-2299 was published Apr 30, 2022

Previous 1…6…42 Next

Previous 1 2 3 4 5 6 7 8 … 41 42 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,041 advisories