Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,457 advisories

Loading
SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via Ant_BlogCat.php. Critical Unreviewed
CVE-2021-38733 was published Oct 28, 2022
SEMCMS SHOP v 1.1 is vulnerable to SQL via Ant_Message.php. Critical Unreviewed
CVE-2021-38732 was published Oct 28, 2022
SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via Ant_Plist.php. Critical Unreviewed
CVE-2021-38729 was published Oct 28, 2022
SEMCMS v 1.1 is vulnerable to SQL Injection via Ant_Pro.php. Critical Unreviewed
CVE-2021-38737 was published Oct 28, 2022
SEMCMS Shop V 1.1 is vulnerable to SQL Injection via Ant_Global.php. Critical Unreviewed
CVE-2021-38736 was published Oct 28, 2022
SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via Ant_Menu.php. Critical Unreviewed
CVE-2021-38734 was published Oct 28, 2022
SEMCMS v 1.2 is vulnerable to SQL Injection via SEMCMS_User.php. Critical Unreviewed
CVE-2021-38217 was published Oct 28, 2022
Employee Record Management System v 1.2 is vulnerable to SQL Injection via editempprofile.php. Critical Unreviewed
CVE-2021-37782 was published Oct 28, 2022
School Activity Updates with SMS Notification v1.0 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2022-39976 was published Oct 28, 2022
In Tenda ax1803 v1.0.0.1, the http requests handled by the fromAdvSetMacMtuWan functions,... Critical Unreviewed
CVE-2022-40876 was published Oct 28, 2022
Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An... Critical Unreviewed
CVE-2022-3386 was published Oct 28, 2022
Advantech R-SeeNet Versions 2.4.17 and prior are vulnerable to a stack-based buffer overflow. An... Critical Unreviewed
CVE-2022-3385 was published Oct 28, 2022
VMware Cloud Foundation (NSX-V) contains an XML External Entity (XXE) vulnerability. On VCF 3.x... Critical Unreviewed
CVE-2022-31678 was published Oct 28, 2022
Vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise... Critical Unreviewed
CVE-2022-37913 was published Oct 28, 2022
Vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise... Critical Unreviewed
CVE-2022-37914 was published Oct 28, 2022
A vulnerability was found in Redis. It has been declared as critical. This vulnerability affects... Critical Unreviewed
CVE-2022-3734 was published Oct 28, 2022
A vulnerability was found in seccome Ehoney. It has been rated as critical. This issue affects... Critical Unreviewed
CVE-2022-3735 was published Oct 28, 2022
A vulnerability in the web-based management interface of Aruba EdgeConnect Enterprise... Critical Unreviewed
CVE-2022-37915 was published Oct 28, 2022
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file... Critical Unreviewed
CVE-2021-38397 was published Oct 28, 2022
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to improper... Critical Unreviewed
CVE-2021-38395 was published Oct 28, 2022
A vulnerability, which was classified as critical, has been found in seccome Ehoney. This issue... Critical Unreviewed
CVE-2022-3729 was published Oct 28, 2022
A vulnerability has been found in seccome Ehoney and classified as critical. Affected by this... Critical Unreviewed
CVE-2022-3731 was published Oct 28, 2022
A vulnerability was found in seccome Ehoney and classified as critical. Affected by this issue is... Critical Unreviewed
CVE-2022-3732 was published Oct 28, 2022
A vulnerability, which was classified as critical, was found in seccome Ehoney. Affected is an... Critical Unreviewed
CVE-2022-3730 was published Oct 28, 2022
IP-COM EW9 V15.11.0.14(9732) was discovered to contain a command injection vulnerability in the... Critical Unreviewed
CVE-2022-43367 was published Oct 27, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database