Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,501 advisories

Loading
SQL Injection vulnerability in inxedu 2.0.6 allows attackers to execute arbitrary commands via... Critical Unreviewed
CVE-2020-21152 was published Jan 20, 2023
Multiple SQL Injection vulnerabilies in tourist5 Online-food-ordering-system 1.0. Critical Unreviewed
CVE-2020-29297 was published Jan 20, 2023
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5... Critical Unreviewed
CVE-2020-22657 was published Jan 20, 2023
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5... Critical Unreviewed
CVE-2020-22654 was published Jan 20, 2023
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5... Critical Unreviewed
CVE-2020-22653 was published Jan 20, 2023
SQL Injection vulnerability in RemoteClinic 2.0 allows attackers to execute arbitrary commands... Critical Unreviewed
CVE-2022-48152 was published Jan 20, 2023
SQL Injection vulnerability in kishan0725 Hospital Management System thru commit... Critical Unreviewed
CVE-2022-48120 was published Jan 20, 2023
In ModSecurity before 2.9.7, FILES_TMP_CONTENT sometimes lacked the complete content. This can... Critical Unreviewed
CVE-2023-24021 was published Jan 20, 2023
When processing files, malloc stores the data of the current line. When processing comments,... Critical Unreviewed
CVE-2021-33641 was published Jan 20, 2023
SQL-Injection vulnerability caused by the lack of verification of input values for the table name... Critical Unreviewed
CVE-2021-26644 was published Jan 20, 2023
Zoho ManageEngine ServiceDesk Plus MSP through 13003 is vulnerable to authentication bypass due... Critical Unreviewed
CVE-2023-22964 was published Jan 20, 2023
The Paid Memberships Pro WordPress Plugin, version < 2.9.8, is affected by an unauthenticated SQL... Critical Unreviewed
CVE-2023-23488 was published Jan 20, 2023
The Easy Digital Downloads WordPress Plugin, version < 3.1.0.4, is affected by an unauthenticated... Critical Unreviewed
CVE-2023-23489 was published Jan 20, 2023
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection... Critical Unreviewed
CVE-2022-48121 was published Jan 20, 2023
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection... Critical Unreviewed
CVE-2022-48125 was published Jan 20, 2023
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection... Critical Unreviewed
CVE-2022-48124 was published Jan 20, 2023
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection... Critical Unreviewed
CVE-2022-48122 was published Jan 20, 2023
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection... Critical Unreviewed
CVE-2022-48126 was published Jan 20, 2023
TOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection... Critical Unreviewed
CVE-2022-48123 was published Jan 20, 2023
A vulnerability in the web-based management interface of Cisco Small Business RV042 Series... Critical Unreviewed
CVE-2023-20025 was published Jan 20, 2023
Predictable Seed in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishi Electric... Critical Unreviewed
CVE-2022-40267 was published Jan 20, 2023
D-Link DIR-859 A1 1.05 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2022-46476 was published Jan 20, 2023
Multiple SQL injection vulnerabilities in NexusPHP before 1.7.33 allow remote attackers to... Critical Unreviewed
CVE-2022-46887 was published Jan 19, 2023
Seltmann GmbH Content Management System 6 is vulnerable to SQL Injection via /index.php. Critical Unreviewed
CVE-2022-47740 was published Jan 19, 2023
A vulnerability was found in copperwall Twiddit. It has been rated as critical. This issue... Critical Unreviewed
CVE-2015-10070 was published Jan 19, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database