Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

26,859 advisories

Loading
A vulnerability has been found in SourceCodester Medical Certificate Generator App 1.0 and... Critical Unreviewed
CVE-2023-0774 was published Feb 10, 2023
KASAGO TCP/IP stack provided by Zuken Elmic generates ISNs(Initial Sequence Number) for TCP... Critical Unreviewed
CVE-2022-43501 was published Feb 10, 2023
Command injection in the administration interface in APSystems ECU-R version 5203 allows a remote... Critical Unreviewed
CVE-2022-45699 was published Feb 10, 2023
A vulnerability was found in dimtion Shaarlier up to 1.2.2. It has been declared as critical.... Critical Unreviewed
CVE-2015-10076 was published Feb 10, 2023
A command injection vulnerability exists in Jitsi before commit... Critical Unreviewed
CVE-2022-43550 was published Feb 9, 2023
External Control of Critical State Data, Improper Control of Generation of Code ('Code Injection'... Critical Unreviewed
CVE-2023-0575 was published Feb 9, 2023
Relative Path Traversal vulnerability in YugaByte, Inc. Yugabyte Managed ... Critical Unreviewed
CVE-2023-0745 was published Feb 9, 2023
The phone-PC collaboration module has a logic bypass vulnerability. Successful exploitation of... Critical Unreviewed
CVE-2022-48290 was published Feb 9, 2023
Server-Side Request Forgery (SSRF), Improperly Controlled Modification of Dynamically-Determined... Critical Unreviewed
CVE-2023-0574 was published Feb 9, 2023
A vulnerability was found in glorylion JFinalOA 1.0.2 and classified as critical. This issue... Critical Unreviewed
CVE-2023-0758 was published Feb 9, 2023
openssl-src contains Read Buffer Overflow in X.509 Name Constraint Critical
CVE-2022-4203 was published for openssl-src (Rust) Feb 8, 2023
File upload vulnerability in Future-Depth Institutional Management Website (IMS) 1.0, allows... Critical Unreviewed
CVE-2022-45527 was published Feb 8, 2023
SQL Injection vulnerability in Future-Depth Institutional Management Website (IMS) 1.0, allows... Critical Unreviewed
CVE-2022-45526 was published Feb 8, 2023
Deserialization of Untrusted Data in thinkphp Critical
CVE-2022-45982 was published for topthink/think (Composer) Feb 8, 2023
Insufficient validation of input parameters when changing configuration on Tbase server in B&R... Critical Unreviewed
CVE-2022-43764 was published Feb 8, 2023
Lack of verification in B&R APROL Tbase server versions < R 4.2-07 may lead to memory leaks when... Critical Unreviewed
CVE-2022-43762 was published Feb 8, 2023
Answer subject to Cross-site Scripting vulnerability Critical
CVE-2023-0743 was published for github.com/answerdev/answer (Go) Feb 8, 2023
Cross-site scripting vulnerability found in answerdev/answer Critical
CVE-2023-0740 was published for github.com/answerdev/answer (Go) Feb 8, 2023
Answer has Cross-site Scripting vulnerability Critical
CVE-2023-0741 was published for github.com/answerdev/answer (Go) Feb 8, 2023
Answer contains Cross-site Scripting vulnerability Critical
CVE-2023-0742 was published for github.com/answerdev/answer (Go) Feb 8, 2023
Answer contains Improper Access Control vulnerability Critical
CVE-2023-0744 was published for github.com/answerdev/answer (Go) Feb 8, 2023
Directory Traversal vulnerability in AdminLTE 3.1.0 allows remote attackers to gain escalated... Critical Unreviewed
CVE-2021-36471 was published Feb 8, 2023
go.uuid has Predictable UUID Identifiers Critical
CVE-2021-3538 was published for github.com/satori/go.uuid (Go) Feb 7, 2023
A vulnerability was found in XpressEngine up to 1.4.4. It has been rated as critical. This issue... Critical Unreviewed
CVE-2011-10003 was published Feb 7, 2023
A vulnerability classified as critical has been found in weblabyrinth 0.3.1. This affects the... Critical Unreviewed
CVE-2011-10002 was published Feb 7, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database