Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,128
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+

26,872 advisories

Loading
tinymighty WikiSEO is vulnerable to cross-site scripting via modifyHTML function Critical
CVE-2015-10073 was published for tinymighty/wiki-seo (Composer) Feb 6, 2023
**UNSUPPORTED WHEN ASSIGNED** Cross Site Scripting (XSS) in HP Deskjet 2540 series printer... Critical Unreviewed
CVE-2022-48311 was published Feb 6, 2023
SQL Injection vulnerability in Talend ESB Runtime 7.3.1-R2022-09-RT thru 8.0.1-R2022-10-RT when... Critical Unreviewed
CVE-2022-45589 was published Feb 6, 2023
pycdc commit 44a730f3a889503014fec94ae6e62d8401cb75e5 was discovered to contain a stack overflow... Critical Unreviewed
CVE-2022-48078 was published Feb 6, 2023
In NVS365 V01, the background network test function can trigger command execution. Critical Unreviewed
CVE-2022-47071 was published Feb 6, 2023
Western Digital My Cloud devices before OS5 have a nobody account with a blank password. Critical Unreviewed
CVE-2021-36224 was published Feb 6, 2023
Western Digital My Cloud devices before OS5 do not use cryptographically signed Firmware upgrade... Critical Unreviewed
CVE-2021-36226 was published Feb 6, 2023
A vulnerability was found in SourceCodester Canteen Management System 1.0. It has been rated as... Critical Unreviewed
CVE-2023-0679 was published Feb 6, 2023
TOTOlink A7100RU(V7.4cu.2313_B20191024) was discovered to contain a command injection... Critical Unreviewed
CVE-2023-24276 was published Feb 6, 2023
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id... Critical Unreviewed
CVE-2023-24201 was published Feb 6, 2023
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id... Critical Unreviewed
CVE-2023-24199 was published Feb 6, 2023
Raffle Draw System v1.0 was discovered to contain multiple SQL injection vulnerabilities at... Critical Unreviewed
CVE-2023-24198 was published Feb 6, 2023
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id... Critical Unreviewed
CVE-2023-24200 was published Feb 6, 2023
Raffle Draw System v1.0 was discovered to contain a local file inclusion vulnerability via the... Critical Unreviewed
CVE-2023-24202 was published Feb 6, 2023
A vulnerability has been found in Gimmie Plugin 1.2.2 and classified as critical. Affected by... Critical Unreviewed
CVE-2014-125086 was published Feb 6, 2023
A vulnerability, which was classified as critical, was found in Gimmie Plugin 1.2.2. Affected is... Critical Unreviewed
CVE-2014-125085 was published Feb 6, 2023
A vulnerability, which was classified as critical, has been found in Gimmie Plugin 1.2.2. This... Critical Unreviewed
CVE-2014-125084 was published Feb 6, 2023
Header injection in TurboGears Critical
CVE-2019-25101 was published for TurboGears (pip) Feb 4, 2023
A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0.... Critical Unreviewed
CVE-2023-0673 was published Feb 4, 2023
A vulnerability was found in fanzila WebFinance 0.5. It has been classified as critical. Affected... Critical Unreviewed
CVE-2013-10017 was published Feb 4, 2023
A vulnerability was found in fanzila WebFinance 0.5. It has been declared as critical. Affected... Critical Unreviewed
CVE-2013-10018 was published Feb 4, 2023
IBM WebSphere Application Server 8.5 and 9.0 traditional could allow a remote attacker to execute... Critical Unreviewed
CVE-2023-23477 was published Feb 3, 2023
EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution... Critical Unreviewed
CVE-2023-24576 was published Feb 3, 2023
A vulnerability has been found in fanzila WebFinance 0.5 and classified as critical. This... Critical Unreviewed
CVE-2013-10015 was published Feb 3, 2023
A vulnerability was found in fanzila WebFinance 0.5 and classified as critical. This issue... Critical Unreviewed
CVE-2013-10016 was published Feb 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database