Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,490 advisories

Loading
A vulnerability, which was classified as critical, was found in soshtolsus wing-tight. This... Critical Unreviewed
CVE-2014-125044 was published Jan 5, 2023
An issue was discovered in Siren Investigate before 12.1.7. Script variable whitelisting is... Critical Unreviewed
CVE-2022-47544 was published Jan 5, 2023
A vulnerability was found in stevejagodzinski DevNewsAggregator. It has been rated as critical.... Critical Unreviewed
CVE-2014-125040 was published Jan 5, 2023
A vulnerability, which was classified as critical, has been found in glidernet ogn-live. This... Critical Unreviewed
CVE-2015-10015 was published Jan 5, 2023
A vulnerability classified as critical has been found in arekk uke. This affects an unknown part... Critical Unreviewed
CVE-2015-10014 was published Jan 5, 2023
A vulnerability classified as critical was found in Miccighel PR-CWT. This vulnerability affects... Critical Unreviewed
CVE-2014-125041 was published Jan 5, 2023
A flaw was found in the bash package, where a heap-buffer overflow can occur in valid... Critical Unreviewed
CVE-2022-3715 was published Jan 5, 2023
There is an unauthorized buffer overflow vulnerability in Tenda AX12 v22.03.01.21 _ cn. This... Critical Unreviewed
CVE-2022-45995 was published Jan 5, 2023
Integer overflow or wraparound vulnerability in CGI component in Synology Router Manager (SRM)... Critical Unreviewed
CVE-2023-0077 was published Jan 5, 2023
A vulnerability was found in eprintsug ulcc-core. It has been declared as critical. Affected by... Critical Unreviewed
CVE-2021-4304 was published Jan 5, 2023
A vulnerability was found in soerennb eXtplorer up to 2.1.12 and classified as critical. Affected... Critical Unreviewed
CVE-2019-25097 was published Jan 5, 2023
A vulnerability was found in soerennb eXtplorer up to 2.1.12. It has been classified as critical.... Critical Unreviewed
CVE-2019-25098 was published Jan 5, 2023
Zoho ManageEngine Access Manager Plus before 4309, Password Manager Pro before 12210, and PAM360... Critical Unreviewed
CVE-2022-47523 was published Jan 5, 2023
A vulnerability has been found in ghostlander Halcyon and classified as critical. Affected by... Critical Unreviewed
CVE-2021-4300 was published Jan 5, 2023
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 is vulnerable to SQL... Critical Unreviewed
CVE-2022-22338 was published Jan 4, 2023
A vulnerability classified as critical was found in gesellix titlelink. Affected by this... Critical Unreviewed
CVE-2010-10003 was published Jan 4, 2023
A vulnerability has been found in AlliedModders AMX Mod X and classified as critical. This... Critical Unreviewed
CVE-2020-36639 was published Jan 4, 2023
In Boa, there is a possible command injection due to improper input validation. This could lead... Critical Unreviewed
CVE-2022-32665 was published Jan 3, 2023
Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0... Critical Unreviewed
CVE-2022-38627 was published Jan 3, 2023
The User Post Gallery - UPG plugin for WordPress is vulnerable to authorization bypass which... Critical Unreviewed
CVE-2023-0039 was published Jan 3, 2023
Out-of-bounds write vulnerability in Remote Desktop Functionality in Synology VPN Plus Server... Critical Unreviewed
CVE-2022-43931 was published Jan 3, 2023
aEnrich a+HRD has improper validation for login function. An unauthenticated remote attacker can... Critical Unreviewed
CVE-2022-39042 was published Jan 3, 2023
aEnrich a+HRD has insufficient user input validation for specific API parameter. An... Critical Unreviewed
CVE-2022-39041 was published Jan 3, 2023
Merit LILIN AH55B04 & AH55B08 DVR firm has hard-coded administrator credentials. An... Critical Unreviewed
CVE-2022-47618 was published Jan 3, 2023
A vulnerability classified as problematic has been found in OpenDNS OpenResolve. This affects an... Critical Unreviewed
CVE-2015-10011 was published Jan 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database