GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,946

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

26,923 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A lack of rate limiting on the password reset endpoint of Chamberlain myQ v5.222.0.32277 (on iOS)... Critical Unreviewed

CVE-2023-24080 was published Feb 22, 2023

An access control issue in Axcora POS #0~gitf77ec09 allows unauthenticated attackers to execute... Critical Unreviewed

CVE-2023-24320 was published Feb 22, 2023

Versionn Command Injection Vulnerability Critical

CVE-2023-25805 was published for versionn (npm) Feb 22, 2023

A vulnerability has been found in SourceCodester Best POS Management System 1.0 and classified as... Critical Unreviewed

CVE-2023-0946 was published Feb 21, 2023

A vulnerability was found in InSTEDD Pollit 2.3.1. It has been rated as critical. This issue... Critical Unreviewed

CVE-2017-20179 was published Feb 21, 2023

Prolink router PRS1841 was discovered to contain hardcoded credentials for its Telnet and FTP... Critical Unreviewed

CVE-2022-46637 was published Feb 21, 2023

A security misconfiguration vulnerability exists in the Zyxel LTE3316-M604 firmware version V2.00... Critical Unreviewed

CVE-2023-22920 was published Feb 21, 2023

A vulnerability has been found in harrystech Dynosaur-Rails and classified as critical. Affected... Critical Unreviewed

CVE-2015-10083 was published Feb 21, 2023

TOTOLink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability. Critical Unreviewed

CVE-2023-24184 was published Feb 21, 2023

SQL Injection Vulnerability in tanujpatra228 Tution Management System (TMS) via the email... Critical Unreviewed

CVE-2022-45677 was published Feb 21, 2023

A vulnerability was found in irontec klear-library chloe and classified as critical. Affected by... Critical Unreviewed

CVE-2015-10084 was published Feb 21, 2023

SQL Injection vulnerability in znfit Home improvement ERP management system V50_20220207,v42... Critical Unreviewed

CVE-2022-45564 was published Feb 21, 2023

A vulnerability was found in DolphinPHP up to 1.5.1. It has been declared as critical. Affected... Critical Unreviewed

CVE-2023-0935 was published Feb 21, 2023

A vulnerability classified as critical has been found in SourceCodester Music Gallery Site 1.0.... Critical Unreviewed

CVE-2023-0938 was published Feb 21, 2023

The ShopLentor WordPress plugin before 2.5.4 unserializes user input from cookies in order to... Critical Unreviewed

CVE-2023-0232 was published Feb 21, 2023

A vulnerability classified as problematic has been found in UIKit0 libplist 1.12. This affects... Critical Unreviewed

CVE-2015-10082 was published Feb 21, 2023

In AFL++ 4.05c, the CmpLog component uses the current working directory to resolve and execute... Critical Unreviewed

CVE-2023-26266 was published Feb 21, 2023

In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based... Critical Unreviewed

CVE-2023-26253 was published Feb 21, 2023

Countly, a product analytics solution, is vulnerable to cross-site scripting prior to version 21... Critical Unreviewed

CVE-2021-32852 was published Feb 21, 2023

JD-GUI 1.6.6 allows deserialization via UIMainWindowPreferencesProvider.singleInstance. Critical Unreviewed

CVE-2023-26234 was published Feb 21, 2023

An issue was discovered in GNU Emacs through 28.2. In ruby-mode.el, the ruby-find-library-file... Critical Unreviewed

CVE-2022-48338 was published Feb 21, 2023

Missing Authentication for Critical Function in SICK FX0-GENT v3 Firmware Version V3.04 and V3.05... Critical Unreviewed

CVE-2023-23453 was published Feb 21, 2023

An issue was discovered in GNU Emacs through 28.2. htmlfontify.el has a command injection... Critical Unreviewed

CVE-2022-48339 was published Feb 21, 2023

GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name... Critical Unreviewed

CVE-2022-48337 was published Feb 21, 2023

Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05... Critical Unreviewed

CVE-2023-23452 was published Feb 21, 2023

Previous 1…395…400 Next

Previous 1 2 … 393 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

26,923 advisories