Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

26,868 advisories

Loading
Hardcoded credentials in Global Facilities Management Software (GFMS) Version 3 software... Critical Unreviewed
CVE-2022-45766 was published Feb 10, 2023
CodenameOne Pending Intent vulnerability Critical
CVE-2022-4903 was published for com.codenameone:codenameone-core (Maven) Feb 10, 2023
SQL injection in webbuilders-group silverstripe-kapost-bridge Critical
CVE-2015-10077 was published for webbuilders-group/silverstripe-kapost-bridge (Composer) Feb 10, 2023
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the... Critical Unreviewed
CVE-2023-24348 was published Feb 10, 2023
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the... Critical Unreviewed
CVE-2023-24344 was published Feb 10, 2023
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the... Critical Unreviewed
CVE-2023-24351 was published Feb 10, 2023
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the... Critical Unreviewed
CVE-2023-24350 was published Feb 10, 2023
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the... Critical Unreviewed
CVE-2023-24352 was published Feb 10, 2023
D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the... Critical Unreviewed
CVE-2023-24349 was published Feb 10, 2023
A vulnerability has been found in SourceCodester Medical Certificate Generator App 1.0 and... Critical Unreviewed
CVE-2023-0774 was published Feb 10, 2023
KASAGO TCP/IP stack provided by Zuken Elmic generates ISNs(Initial Sequence Number) for TCP... Critical Unreviewed
CVE-2022-43501 was published Feb 10, 2023
Command injection in the administration interface in APSystems ECU-R version 5203 allows a remote... Critical Unreviewed
CVE-2022-45699 was published Feb 10, 2023
A vulnerability was found in dimtion Shaarlier up to 1.2.2. It has been declared as critical.... Critical Unreviewed
CVE-2015-10076 was published Feb 10, 2023
A command injection vulnerability exists in Jitsi before commit... Critical Unreviewed
CVE-2022-43550 was published Feb 9, 2023
External Control of Critical State Data, Improper Control of Generation of Code ('Code Injection'... Critical Unreviewed
CVE-2023-0575 was published Feb 9, 2023
Relative Path Traversal vulnerability in YugaByte, Inc. Yugabyte Managed ... Critical Unreviewed
CVE-2023-0745 was published Feb 9, 2023
The phone-PC collaboration module has a logic bypass vulnerability. Successful exploitation of... Critical Unreviewed
CVE-2022-48290 was published Feb 9, 2023
Server-Side Request Forgery (SSRF), Improperly Controlled Modification of Dynamically-Determined... Critical Unreviewed
CVE-2023-0574 was published Feb 9, 2023
A vulnerability was found in glorylion JFinalOA 1.0.2 and classified as critical. This issue... Critical Unreviewed
CVE-2023-0758 was published Feb 9, 2023
openssl-src contains Read Buffer Overflow in X.509 Name Constraint Critical
CVE-2022-4203 was published for openssl-src (Rust) Feb 8, 2023
File upload vulnerability in Future-Depth Institutional Management Website (IMS) 1.0, allows... Critical Unreviewed
CVE-2022-45527 was published Feb 8, 2023
SQL Injection vulnerability in Future-Depth Institutional Management Website (IMS) 1.0, allows... Critical Unreviewed
CVE-2022-45526 was published Feb 8, 2023
Deserialization of Untrusted Data in thinkphp Critical
CVE-2022-45982 was published for topthink/think (Composer) Feb 8, 2023
Insufficient validation of input parameters when changing configuration on Tbase server in B&R... Critical Unreviewed
CVE-2022-43764 was published Feb 8, 2023
Lack of verification in B&R APROL Tbase server versions < R 4.2-07 may lead to memory leaks when... Critical Unreviewed
CVE-2022-43762 was published Feb 8, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database