Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

26,868 advisories

Loading
Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP... Critical Unreviewed
CVE-2022-46637 was published Feb 21, 2023
A security misconfiguration vulnerability exists in the Zyxel LTE3316-M604 firmware version V2.00... Critical Unreviewed
CVE-2023-22920 was published Feb 21, 2023
A vulnerability has been found in harrystech Dynosaur-Rails and classified as critical. Affected... Critical Unreviewed
CVE-2015-10083 was published Feb 21, 2023
TOTOLink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability. Critical Unreviewed
CVE-2023-24184 was published Feb 21, 2023
SQL Injection Vulnerability in tanujpatra228 Tution Management System (TMS) via the email... Critical Unreviewed
CVE-2022-45677 was published Feb 21, 2023
A vulnerability was found in irontec klear-library chloe and classified as critical. Affected by... Critical Unreviewed
CVE-2015-10084 was published Feb 21, 2023
SQL Injection vulnerability in znfit Home improvement ERP management system V50_20220207,v42... Critical Unreviewed
CVE-2022-45564 was published Feb 21, 2023
A vulnerability was found in DolphinPHP up to 1.5.1. It has been declared as critical. Affected... Critical Unreviewed
CVE-2023-0935 was published Feb 21, 2023
A vulnerability classified as critical has been found in SourceCodester Music Gallery Site 1.0.... Critical Unreviewed
CVE-2023-0938 was published Feb 21, 2023
The ShopLentor WordPress plugin before 2.5.4 unserializes user input from cookies in order to... Critical Unreviewed
CVE-2023-0232 was published Feb 21, 2023
A vulnerability classified as problematic has been found in UIKit0 libplist 1.12. This affects... Critical Unreviewed
CVE-2015-10082 was published Feb 21, 2023
In AFL++ 4.05c, the CmpLog component uses the current working directory to resolve and execute... Critical Unreviewed
CVE-2023-26266 was published Feb 21, 2023
In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based... Critical Unreviewed
CVE-2023-26253 was published Feb 21, 2023
Missing Authentication for Critical Function in SICK FX0-GENT v3 Firmware Version V3.04 and V3.05... Critical Unreviewed
CVE-2023-23453 was published Feb 21, 2023
An issue was discovered in GNU Emacs through 28.2. In ruby-mode.el, the ruby-find-library-file... Critical Unreviewed
CVE-2022-48338 was published Feb 21, 2023
An issue was discovered in GNU Emacs through 28.2. htmlfontify.el has a command injection... Critical Unreviewed
CVE-2022-48339 was published Feb 21, 2023
Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05... Critical Unreviewed
CVE-2023-23452 was published Feb 21, 2023
GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name... Critical Unreviewed
CVE-2022-48337 was published Feb 21, 2023
Countly, a product analytics solution, is vulnerable to cross-site scripting prior to version 21... Critical Unreviewed
CVE-2021-32852 was published Feb 21, 2023
JD-GUI 1.6.6 allows deserialization via UIMainWindowPreferencesProvider.singleInstance. Critical Unreviewed
CVE-2023-26234 was published Feb 21, 2023
Apache Kerby LdapIdentityBackend LDAP Injection vulnerability Critical
CVE-2023-25613 was published for org.apache.kerby:ldap-backend (Maven) Feb 20, 2023
Expired sessions were not securely terminated in the RestAPI for Tribe29's Checkmk <= 2.1.0p10... Critical Unreviewed
CVE-2022-48317 was published Feb 20, 2023
A vulnerability, which was classified as critical, has been found in uakfdotb oneapp. This issue... Critical Unreviewed
CVE-2012-10008 was published Feb 20, 2023
A vulnerability was found in OCLC-Research OAICat 1.5.61. It has been rated as critical. This... Critical Unreviewed
CVE-2013-10019 was published Feb 20, 2023
MISP before 2.4.166 unsafely allows users to use the order parameter, related to app/Model... Critical Unreviewed
CVE-2022-48329 was published Feb 20, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database