GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,889
Composer 4,870
Erlang 37
GitHub Actions 36
Go 2,500
Maven 5,942
npm 4,147
NuGet 735
pip 3,948
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,705

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,474 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

RSFirewall tries to identify the original IP address by looking at different HTTP headers. A... Critical Unreviewed

CVE-2021-4226 was published Dec 15, 2022

vRealize Network Insight (vRNI) contains a command injection vulnerability present in the vRNI... Critical Unreviewed

CVE-2022-31702 was published Dec 14, 2022

logrocket-oauth2-example through 2020-05-27 allows SQL injection via the /auth/register username... Critical Unreviewed

CVE-2022-38488 was published Dec 14, 2022

Helmet Store Showroom v1.0 vulnerable to unauthenticated SQL Injection. Critical Unreviewed

CVE-2022-46072 was published Dec 14, 2022

There is SQL Injection vulnerability at Helmet Store Showroom v1.0 Login Page. This vulnerability... Critical Unreviewed

CVE-2022-46071 was published Dec 14, 2022

An improper limitation of a pathname to a restricted directory vulnerability was identified in... Critical Unreviewed

CVE-2022-46255 was published Dec 14, 2022

D-Link DIR-3040 device with firmware 120B03 was discovered to contain a command injection... Critical Unreviewed

CVE-2022-44832 was published Dec 14, 2022

Python3-RESTfulAPI commit d9907f14e9e25dcdb54f5b22252b0e9452e3970e and... Critical Unreviewed

CVE-2022-46609 was published Dec 14, 2022

A reflected cross-site scripting (XSS) vulnerability in Proxmox Virtual Environment prior to v7.2... Critical Unreviewed

CVE-2022-31358 was published Dec 14, 2022

Passhunt commit 54eb987d30ead2b8ebbf1f0b880aa14249323867 was discovered to contain a code... Critical Unreviewed

CVE-2022-46997 was published Dec 14, 2022

vSphere_selfuse commit 2a9fe074a64f6a0dd8ac02f21e2f10d66cac5749 was discovered to contain a code... Critical Unreviewed

CVE-2022-46996 was published Dec 14, 2022

A vulnerability, which was classified as critical, has been found in bspkrs MCPMappingViewer.... Critical Unreviewed

CVE-2022-4494 was published Dec 14, 2022

Daikin SVMPC1 version 2.1.22 and prior and SVMPC2 version 1.2.3 and prior are vulnerable to an... Critical Unreviewed

CVE-2022-41653 was published Dec 14, 2022

Due to the lack of adequately implemented access-control rules, all versions Kingspan TMS300 CS... Critical Unreviewed

CVE-2022-2757 was published Dec 14, 2022

IP-COM EW9 V15.11.0.14(9732) was discovered to contain a command injection vulnerability in the... Critical Unreviewed

CVE-2022-45005 was published Dec 13, 2022

A command injection vulnerability has been identified in Atos Unify OpenScape 4000 Assistant and... Critical Unreviewed

CVE-2022-46404 was published Dec 13, 2022

A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE... Critical Unreviewed

CVE-2022-46353 was published Dec 13, 2022

In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an... Critical Unreviewed

CVE-2022-20473 was published Dec 13, 2022

In toLanguageTag of LocaleListCache.cpp, there is a possible out of bounds read due to an... Critical Unreviewed

CVE-2022-20472 was published Dec 13, 2022

Unauthenticated remote arbitrary code execution Critical Unreviewed

CVE-2022-27518 was published Dec 13, 2022

A vulnerability has been identified in SICAM PAS/PQS (All versions < V7.0). Affected software... Critical Unreviewed

CVE-2022-43724 was published Dec 13, 2022

A vulnerability, which was classified as critical, has been found in m0ver bible-online. Affected... Critical Unreviewed

CVE-2022-4454 was published Dec 13, 2022

PHP Remote File Inclusion in GitHub repository tsolucio/corebos prior to 8.0. Critical Unreviewed

CVE-2022-4446 was published Dec 13, 2022

An unauthenticated user can attach to an open interface exposed through JNDI by the Messaging... Critical Unreviewed

CVE-2022-41271 was published Dec 13, 2022

The Booking calendar, Appointment Booking System WordPress plugin before 3.2.2 does not validate... Critical Unreviewed

CVE-2022-3982 was published Dec 12, 2022

Previous 1…385…400 Next

Previous 1 2 … 383 384 385 386 387 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,474 advisories