GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

137,190 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

HCL BigFix Compliance is affected by an improper or missing SameSite attribute. This can lead to... Moderate Unreviewed

CVE-2024-42212 was published May 5, 2025

A vulnerability was found in Intelbras InControl up to 2.21.59. It has been classified as... Moderate Unreviewed

CVE-2025-4286 was published May 5, 2025

The Widget for Social Page Feeds WordPress plugin before 6.4 does not sanitise and escape some of... Moderate Unreviewed

CVE-2024-0973 was published Mar 18, 2024

The Profile Box Shortcode And Widget WordPress plugin before 1.2.1 does not sanitise and escape... Moderate Unreviewed

CVE-2024-1401 was published Mar 19, 2024

The reCAPTCHA Jetpack WordPress plugin through 0.2.2 does not have CSRF check in some places, and... Moderate Unreviewed

CVE-2024-3941 was published May 14, 2024

In DA, there is a possible permission bypass due to an incorrect status check. This could lead to... Moderate Unreviewed

CVE-2023-32871 was published May 6, 2024

The Team Members WordPress plugin before 5.3.2 does not validate and escape some of its shortcode... Moderate Unreviewed

CVE-2024-1331 was published Mar 18, 2024

The Scalable Vector Graphics (SVG) WordPress plugin through 3.4 does not sanitize uploaded SVG... Moderate Unreviewed

CVE-2023-7085 was published Mar 18, 2024

The Responsive Pricing Table WordPress plugin before 5.1.11 does not validate and escape some of... Moderate Unreviewed

CVE-2024-1333 was published Mar 18, 2024

Suprema BioStar 2 v2.8.16 was discovered to contain a SQL injection vulnerability via the values... Moderate Unreviewed

CVE-2023-27167 was published Mar 29, 2023

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because... Moderate Unreviewed

CVE-2023-28866 was published Mar 27, 2023

A vulnerability was found in systemd. This security flaw can cause a local information leak due... Moderate Unreviewed

CVE-2022-4415 was published Jan 11, 2023

The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.1, iOS 15.7... Moderate Unreviewed

CVE-2022-42798 was published Nov 2, 2022

Xenstore: Guests can create arbitrary number of nodes via transactions T[his CNA information... Moderate Unreviewed

CVE-2022-42326 was published Nov 1, 2022

handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a... Moderate Unreviewed

CVE-2022-44792 was published Nov 7, 2022

handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has... Moderate Unreviewed

CVE-2022-44793 was published Nov 7, 2022

Xenstore: guests can let run xenstored out of memory T[his CNA information record relates to... Moderate Unreviewed

CVE-2022-42318 was published Nov 1, 2022

The Transposh WordPress Translation plugin for WordPress is vulnerable to unauthorized setting... Moderate Unreviewed

CVE-2022-2461 was published Sep 7, 2022

The Stockists Manager for Woocommerce plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2022-2518 was published Sep 7, 2022

Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors... Moderate Unreviewed

CVE-2022-26373 was published Aug 19, 2022

An issue SMM memory leak vulnerability in SMM driver (SMRAM was discovered in Insyde InsydeH2O... Moderate Unreviewed

CVE-2022-35896 was published Sep 23, 2022

An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm... Moderate Unreviewed

CVE-2022-36879 was published Jul 28, 2022

Improper input validation for some Intel(R) Processors may allow an authenticated user to... Moderate Unreviewed

CVE-2022-21180 was published Jun 16, 2022

Observable behavioral in power management throttling for some Intel(R) Processors may allow an... Moderate Unreviewed

CVE-2022-24436 was published Jun 16, 2022

Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an... Moderate Unreviewed

CVE-2022-21125 was published Jun 16, 2022

Previous 1…396…400 Next

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

137,190 advisories