GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,159

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

26,868 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A memory corruption issue was addressed with improved memory handling. This issue affected... Critical Unreviewed

CVE-2018-4331 was published May 14, 2022

EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution... Critical Unreviewed

CVE-2017-8023 was published May 14, 2022

An issue was discovered in TONGDA Office Anywhere 10.18.190121. There is a SQL Injection... Critical Unreviewed

CVE-2019-9759 was published May 14, 2022

A SQL Injection issue was discovered in BlueCMS 1.6. The variable $ad_id is spliced directly in... Critical Unreviewed

CVE-2019-10262 was published May 14, 2022

An issue was discovered in MP4Box in GPAC 0.7.1. The function urn_Read in isomedia/box_code_base... Critical Unreviewed

CVE-2018-13005 was published May 14, 2022

A use-after-free vulnerability can occur while parsing an HTML5 stream in concert with custom... Critical Unreviewed

CVE-2018-18500 was published May 14, 2022

An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10... Critical Unreviewed

CVE-2017-7062 was published May 14, 2022

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13... Critical Unreviewed

CVE-2017-7130 was published May 14, 2022

Stack-based buffer overflow in login_mgr.cgi in D-Link firmware DNR-320L and DNS-320LW before 1... Critical Unreviewed

CVE-2014-7859 was published May 14, 2022

FeiFeiCMS 4.1.190209 allows remote attackers to upload and execute arbitrary PHP code by visiting... Critical Unreviewed

CVE-2019-9825 was published May 14, 2022

FFmpeg before commit cced03dd667a5df6df8fd40d8de0bff477ee02e8 contains multiple out of array... Critical Unreviewed

CVE-2018-1999010 was published May 14, 2022

An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10... Critical Unreviewed

CVE-2017-2428 was published May 14, 2022

Heimdal Thor Agent 2.5.17x before 2.5.173 does not verify X.509 certificates from TLS servers,... Critical Unreviewed

CVE-2019-8351 was published May 14, 2022

A SQL Injection was discovered in PHPSHE 1.7 in include/plugin/payment/alipay/pay.php with the... Critical Unreviewed

CVE-2019-9762 was published May 14, 2022

In tinysvcmdns through 2018-01-16, an mDNS server processing a crafted packet can perform... Critical Unreviewed

CVE-2019-9748 was published May 14, 2022

Buffer overflow in the Group messages monitor (Falcon) in KNX ETS 4.1.5 (Build 3246) allows... Critical Unreviewed

CVE-2015-8299 was published May 14, 2022

SQLiteManager 1.20 and 1.24 allows SQL injection via the /sqlitemanager/main.php dbsel parameter.... Critical Unreviewed

CVE-2019-9083 was published May 14, 2022

Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers... Critical Unreviewed

CVE-2015-2254 was published May 14, 2022

Mozilla developers and community members reported memory safety bugs present in Firefox 63 and... Critical Unreviewed

CVE-2018-12405 was published May 14, 2022

Apache OpenMeetings does not correctly validate uploaded XML documents Critical

CVE-2017-7664 was published for org.apache.openmeetings:openmeetings-parent (Maven) May 17, 2022

Memory safety bugs were reported in Firefox 59, Firefox ESR 52.7, and Thunderbird 52.7. Some of... Critical Unreviewed

CVE-2018-5150 was published May 14, 2022

PHPSHE 1.7 allows module/index/cart.php pintuan_id SQL Injection to index.php. Critical Unreviewed

CVE-2019-9626 was published May 14, 2022

A buffer overflow can occur in the Skia library during buffer offset calculations with hardware... Critical Unreviewed

CVE-2018-18493 was published May 14, 2022

A use-after-free vulnerability can occur while enumerating attributes during SVG animations with... Critical Unreviewed

CVE-2018-5154 was published May 14, 2022

A vulnerability, which was classified as critical, was found in MonikaBrzica scm. This affects an... Critical Unreviewed

CVE-2022-3998 was published Nov 15, 2022

Previous 1…395…400 Next

Previous 1 2 … 393 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

26,868 advisories