Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,490 advisories

Loading
The Cryptocurrency Widgets Pack WordPress plugin through 1.8.1 does not sanitise and escape some... Critical Unreviewed
CVE-2022-4059 was published Jan 3, 2023
The LetsRecover WordPress plugin through 1.1.0 does not properly sanitise and escape a parameter... Critical Unreviewed
CVE-2022-4357 was published Jan 3, 2023
The Wholesale Market WordPress plugin before 2.2.1 does not have authorisation check, as well as... Critical Unreviewed
CVE-2022-4298 was published Jan 3, 2023
The Build App Online WordPress plugin before 1.0.19 does not properly sanitise and escape some... Critical Unreviewed
CVE-2022-3241 was published Jan 3, 2023
The WP User WordPress plugin through 7.0 does not properly sanitize and escape a parameter before... Critical Unreviewed
CVE-2022-4049 was published Jan 3, 2023
The WP AutoComplete Search WordPress plugin through 1.0.4 does not sanitise and escape a... Critical Unreviewed
CVE-2022-4297 was published Jan 3, 2023
The Joy Of Text Lite WordPress plugin before 2.3.1 does not properly sanitise and escape some... Critical Unreviewed
CVE-2022-4099 was published Jan 3, 2023
A vulnerability was found in Centralized-Salesforce-Dev-Framework. It has been declared as... Critical Unreviewed
CVE-2016-15007 was published Jan 2, 2023
A vulnerability, which was classified as critical, was found in License to Kill. This affects an... Critical Unreviewed
CVE-2014-125037 was published Jan 2, 2023
A vulnerability has been found in IS_Projecto2 and classified as critical. This vulnerability... Critical Unreviewed
CVE-2014-125038 was published Jan 2, 2023
** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in... Critical Unreviewed
CVE-2015-10008 was published Jan 2, 2023
A vulnerability was found in porpeeranut go-with-me. It has been declared as critical. Affected... Critical Unreviewed
CVE-2014-125032 was published Jan 2, 2023
A vulnerability classified as critical has been found in Hesburgh Libraries of Notre Dame Sipity.... Critical Unreviewed
CVE-2021-4298 was published Jan 2, 2023
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0... Critical Unreviewed
CVE-2022-42475 was published Jan 2, 2023
A vulnerability has been found in trampgeek jobe up to 1.6.4 and classified as problematic. This... Critical Unreviewed
CVE-2021-4297 was published Jan 1, 2023
A vulnerability, which was classified as critical, has been found in taoeffect Empress. Affected... Critical Unreviewed
CVE-2014-125030 was published Jan 1, 2023
perfSONAR before 4.4.6 inadvertently supports the parse option for a file:// URL. Critical Unreviewed
CVE-2022-45213 was published Jan 1, 2023
Multiple XSS issues were discovered in Sage Enterprise Intelligence 2021 R1.1 that allow an... Critical Unreviewed
CVE-2022-34322 was published Jan 1, 2023
The ntpd_driver component before 1.3.0 and 2.x before 2.2.0 for Robot Operating System (ROS)... Critical Unreviewed
CVE-2022-48198 was published Jan 1, 2023
A vulnerability was found in Exciting Printer and classified as critical. This issue affects some... Critical Unreviewed
CVE-2017-20156 was published Dec 31, 2022
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the wps_sta_enrollee_pin... Critical Unreviewed
CVE-2022-46593 was published Dec 30, 2022
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the cameo.cameo... Critical Unreviewed
CVE-2022-46590 was published Dec 30, 2022
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%d_vap%d... Critical Unreviewed
CVE-2022-46586 was published Dec 30, 2022
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the sys_service... Critical Unreviewed
CVE-2022-46588 was published Dec 30, 2022
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the login_name parameter... Critical Unreviewed
CVE-2022-46582 was published Dec 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database