GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,973

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,502 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The vRealize Log Insight contains a broken access control vulnerability. An unauthenticated... Critical Unreviewed

CVE-2022-31704 was published Jan 26, 2023

The vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated,... Critical Unreviewed

CVE-2022-31706 was published Jan 26, 2023

An issue discovered in Rawchen blog-ssm v1.0 allows remote attacker to escalate privileges and... Critical Unreviewed

CVE-2022-40037 was published Jan 26, 2023

SiteServer CMS 7.1.3 has a SQL injection vulnerability the background. Critical Unreviewed

CVE-2022-44297 was published Jan 26, 2023

An issue in the website background of taocms v3.0.2 allows attackers to execute a Server-Side... Critical Unreviewed

CVE-2022-46998 was published Jan 26, 2023

Tuzicms v2.0.6 was discovered to contain a SQL injection vulnerability via the component \App... Critical Unreviewed

CVE-2022-46999 was published Jan 26, 2023

Campbell Scientific dataloggers CR6, CR300, CR800, CR1000 and CR3000 may allow an attacker to... Critical Unreviewed

CVE-2023-0321 was published Jan 26, 2023

A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super... Critical Unreviewed

CVE-2022-47767 was published Jan 26, 2023

Baicells Nova 227, Nova 233, and Nova 243 LTE TDD eNodeB devices with firmware through RTS/RTD 3... Critical Unreviewed

CVE-2023-24022 was published Jan 26, 2023

Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/FUN_0007343c. Critical Unreviewed

CVE-2023-24169 was published Jan 26, 2023

Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/fromSetWirelessRepeat. Critical Unreviewed

CVE-2023-24170 was published Jan 26, 2023

Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/FUN_000c2318. Critical Unreviewed

CVE-2023-24164 was published Jan 26, 2023

Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/formWifiBasicSet. Critical Unreviewed

CVE-2023-24166 was published Jan 26, 2023

Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/initIpAddrInfo. Critical Unreviewed

CVE-2023-24165 was published Jan 26, 2023

Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via /goform/add_white_node. Critical Unreviewed

CVE-2023-24167 was published Jan 26, 2023

Baicells Nova 227, Nova 233, and Nova 243 LTE TDD eNodeB devices with firmware through RTS/RTD 3... Critical Unreviewed

CVE-2023-24508 was published Jan 26, 2023

Amano Xoffice parking solutions 7.1.3879 is vulnerable to SQL Injection. Critical Unreviewed

CVE-2023-23331 was published Jan 24, 2023

OS Command injection vulnerability in sleuthkit fls tool 4.11.1 allows attackers to execute... Critical Unreviewed

CVE-2022-45639 was published Jan 24, 2023

In certain Lexmark products through 2023-01-12, SSRF can occur because of a lack of input... Critical Unreviewed

CVE-2023-23560 was published Jan 23, 2023

The Login as User or Customer WordPress plugin before 3.3 lacks authorization checks to ensure... Critical Unreviewed

CVE-2022-4305 was published Jan 23, 2023

The WeStand WordPress theme before 2.1, footysquare WordPress theme, aidreform WordPress theme,... Critical Unreviewed

CVE-2022-0316 was published Jan 23, 2023

ONLYOFFICE all versions as of 2021-11-08 is affected by Incorrect Access Control. An attacker can... Critical Unreviewed

CVE-2021-43445 was published Jan 23, 2023

The CBX Petition for WordPress plugin through 1.0.3 does not properly sanitize and escape a... Critical Unreviewed

CVE-2022-4383 was published Jan 23, 2023

In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to... Critical Unreviewed

CVE-2023-24056 was published Jan 22, 2023

In MISP 2.4.167, app/Controller/Component/ACLComponent.php has incorrect access control for the... Critical Unreviewed

CVE-2023-24028 was published Jan 21, 2023

Previous 1…366…400 Next

Previous 1 2 … 364 365 366 367 368 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,502 advisories