GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,810

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,490 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the setbg_num parameter... Critical Unreviewed

CVE-2022-46601 was published Dec 30, 2022

TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the... Critical Unreviewed

CVE-2022-46597 was published Dec 30, 2022

A vulnerability was found in KBase Metrics. It has been classified as critical. This affects the... Critical Unreviewed

CVE-2022-4860 was published Dec 30, 2022

Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This... Critical Unreviewed

CVE-2022-48196 was published Dec 30, 2022

A vulnerability, which was classified as critical, was found in SourceCodester Lead Management... Critical Unreviewed

CVE-2022-4855 was published Dec 30, 2022

A vulnerability classified as problematic was found in ONC code-validator-api up to 1.0.30. This... Critical Unreviewed

CVE-2021-4295 was published Dec 29, 2022

StreamX applications from versions 6.02.01 to 6.04.34 are affected by a logic bug that allows to... Critical Unreviewed

CVE-2022-4779 was published Dec 29, 2022

A vulnerability was found in simple_php_link_shortener. It has been classified as critical.... Critical Unreviewed

CVE-2018-25057 was published Dec 28, 2022

https://www.hillstonenet.com.cn/ Hillstone Firewall SG-6000 <= 5.0.4.0 is vulnerable to Incorrect... Critical Unreviewed

CVE-2022-45778 was published Dec 28, 2022

A vulnerability was found in Dropbox merou. It has been classified as critical. Affected is the... Critical Unreviewed

CVE-2022-4768 was published Dec 28, 2022

A vulnerability was found in DHBW Fallstudie. It has been declared as critical. Affected by this... Critical Unreviewed

CVE-2021-4290 was published Dec 28, 2022

h3c firewall <= 3.10 ESS6703 has a privilege bypass vulnerability. Critical Unreviewed

CVE-2022-45963 was published Dec 28, 2022

dedecms <=V5.7.102 is vulnerable to SQL Injection. In sys_ sql_ n query.php there are no... Critical Unreviewed

CVE-2022-46442 was published Dec 28, 2022

A vulnerability classified as critical was found in SourceCodester Sanitization Management System... Critical Unreviewed

CVE-2022-4726 was published Dec 27, 2022

A vulnerability was found in FlatPress. It has been classified as critical. This affects the... Critical Unreviewed

CVE-2022-4748 was published Dec 27, 2022

A SQL injection issue in the web API in TrueConf Server 5.2.0.10225 allows remote unauthenticated... Critical Unreviewed

CVE-2022-46764 was published Dec 27, 2022

The ACENet service in Sierra Wireless ALEOS before 4.4.9, 4.5.x through 4.9.x before 4.9.5, and 4... Critical Unreviewed

CVE-2019-11851 was published Dec 27, 2022

Shilpi CAPExWeb 1.1 allows SQL injection via a servlet/capexweb.cap_sendMail GET request. Critical Unreviewed

CVE-2020-24600 was published Dec 27, 2022

Sierra Wireless AirLink Mobility Manager (AMM) before 2.17 mishandles sessions and thus an... Critical Unreviewed

CVE-2020-11101 was published Dec 26, 2022

A vulnerability was found in Brave UX for-the-badge and classified as critical. Affected by this... Critical Unreviewed

CVE-2021-4281 was published Dec 26, 2022

In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), the... Critical Unreviewed

CVE-2020-12069 was published Dec 26, 2022

The Stop Spammers Security | Block Spam Users, Comments, Forms WordPress plugin before 2022.6... Critical Unreviewed

CVE-2022-4120 was published Dec 26, 2022

The IWS WordPress plugin through 1.0 does not properly escape a parameter before using it in a... Critical Unreviewed

CVE-2022-4117 was published Dec 26, 2022

The Return Refund and Exchange For WooCommerce WordPress plugin before 4.0.9 does not validate... Critical Unreviewed

CVE-2022-4047 was published Dec 26, 2022

In CWP (aka Control Web Panel or CentOS Web Panel) before 0.9.8.1107, attackers can make a... Critical Unreviewed

CVE-2021-45466 was published Dec 26, 2022

Previous 1…380…400 Next

Previous 1 2 … 378 379 380 381 382 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,490 advisories