Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,160 advisories

Loading
The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.1, iOS 15.7... Moderate Unreviewed
CVE-2022-42798 was published Nov 2, 2022
Xenstore: Guests can create arbitrary number of nodes via transactions T[his CNA information... Moderate Unreviewed
CVE-2022-42326 was published Nov 1, 2022
handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a... Moderate Unreviewed
CVE-2022-44792 was published Nov 7, 2022
handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has... Moderate Unreviewed
CVE-2022-44793 was published Nov 7, 2022
Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to... Moderate Unreviewed
CVE-2022-42318 was published Nov 1, 2022
The Transposh WordPress Translation plugin for WordPress is vulnerable to unauthorized setting... Moderate Unreviewed
CVE-2022-2461 was published Sep 7, 2022
The Stockists Manager for Woocommerce plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2022-2518 was published Sep 7, 2022
An issue SMM memory leak vulnerability in SMM driver (SMRAM was discovered in Insyde InsydeH2O... Moderate Unreviewed
CVE-2022-35896 was published Sep 23, 2022
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors... Moderate Unreviewed
CVE-2022-26373 was published Aug 19, 2022
An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm... Moderate Unreviewed
CVE-2022-36879 was published Jul 28, 2022
Improper input validation for some Intel(R) Processors may allow an authenticated user to... Moderate Unreviewed
CVE-2022-21180 was published Jun 16, 2022
Observable behavioral in power management throttling for some Intel(R) Processors may allow an... Moderate Unreviewed
CVE-2022-24436 was published Jun 16, 2022
Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an... Moderate Unreviewed
CVE-2022-21125 was published Jun 16, 2022
Processor optimization removal or modification of security-critical code for some Intel(R)... Moderate Unreviewed
CVE-2022-21151 was published May 13, 2022
Insecure default variable initialization of Intel(R) RealSense(TM) ID Solution F450 before... Moderate Unreviewed
CVE-2021-33130 was published May 13, 2022
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1... Moderate Unreviewed
CVE-2025-1992 was published May 5, 2025
foxcms v1.2.5 was discovered to contain a SQL injection vulnerability via the executeCommand... Moderate Unreviewed
CVE-2025-45240 was published May 5, 2025
NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-57234 was published May 5, 2025
NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-57235 was published May 5, 2025
NETGEAR RAX5 (AX1600 WiFi Router) v1.0.2.26 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-57233 was published May 5, 2025
NETGEAR RAX5 (AX1600 WiFi Router) V1.0.2.26 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-57231 was published May 5, 2025
A reflected cross-site scripting (XSS) vulnerability was discovered in Output Messenger before 2... Moderate Unreviewed
CVE-2025-27921 was published May 5, 2025
An issue in the /usr/local/bin/jncs.sh script of Gefen WebFWC (In AV over IP products) v1.85h, v1... Moderate Unreviewed
CVE-2025-25504 was published May 5, 2025
A SQL injection vulnerability in the "Search" functionality of "tickets.php" page in osTicket <=1... Moderate Unreviewed
CVE-2025-26241 was published May 5, 2025
A vulnerability, which was classified as problematic, was found in Shenzhen Sixun Software Sixun... Moderate Unreviewed
CVE-2025-4281 was published May 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database