GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,662
Composer 4,846
Erlang 36
GitHub Actions 33
Go 2,467
Maven 5,890
npm 4,090
NuGet 733
pip 3,907
Pub 12
RubyGems 944
Rust 1,011
Swift 39

Unreviewed advisories

All unreviewed 267,270

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

23,359 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

OpenCATS v0.9.6 was discovered to contain a remote code execution (RCE) vulnerability via the... Critical Unreviewed

CVE-2022-43019 was published Oct 19, 2022

Fuji Electric D300win prior to version 3.7.1.17 is vulnerable to a write-what-where condition,... Critical Unreviewed

CVE-2022-1523 was published Oct 19, 2022

Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business... Critical Unreviewed

CVE-2022-39428 was published Oct 19, 2022

Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business... Critical Unreviewed

CVE-2022-21587 was published Oct 19, 2022

D-Link DSL-2750B devices before 1.05 allow remote unauthenticated command injection via the login... Critical Unreviewed

CVE-2016-20017 was published Oct 19, 2022

MVPower CCTV DVR models, including TV-7104HE 1.8.4 115215B9 and TV7108HE, contain a web shell... Critical Unreviewed

CVE-2016-20016 was published Oct 19, 2022

Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon... Critical Unreviewed

CVE-2022-25720 was published Oct 19, 2022

Cryptographic issue in WLAN due to improper check on return value while authentication handshake... Critical Unreviewed

CVE-2022-25718 was published Oct 19, 2022

Information disclosure in WLAN due to improper length check while processing authentication... Critical Unreviewed

CVE-2022-25719 was published Oct 19, 2022

memory corruption in video due to buffer overflow while parsing asf clips in Snapdragon Auto,... Critical Unreviewed

CVE-2022-25687 was published Oct 19, 2022

Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in... Critical Unreviewed

CVE-2022-25748 was published Oct 19, 2022

Tenda AC18 V15.03.05.19(6318) was discovered to contain a stack overflow via the time parameter... Critical Unreviewed

CVE-2022-43260 was published Oct 18, 2022

GetSimple CMS v3.3.16 was discovered to contain a remote code execution (RCE) vulnerability via... Critical Unreviewed

CVE-2022-41544 was published Oct 18, 2022

An improper neutralization of special elements used in an OS Command ('OS Command Injection')... Critical Unreviewed

CVE-2022-33873 was published Oct 18, 2022

An improper restriction of excessive authentication attempts vulnerability [CWE-307] in... Critical Unreviewed

CVE-2022-35846 was published Oct 18, 2022

An improper neutralization of special elements used in an OS Command ('OS Command Injection')... Critical Unreviewed

CVE-2022-33874 was published Oct 18, 2022

An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version... Critical Unreviewed

CVE-2022-40684 was published Oct 18, 2022

An improper neutralization of special elements used in an OS Command ('OS Command Injection')... Critical Unreviewed

CVE-2022-33872 was published Oct 18, 2022

In "Gin-Vue-Admin", versions v2.5.1 through v2.5.3b are vulnerable to Unrestricted File Upload... Critical Unreviewed

CVE-2022-32176 was published Oct 18, 2022

kkFileView 4.0 is vulnerable to Server-side request forgery (SSRF) via controller... Critical Unreviewed

CVE-2022-42149 was published Oct 18, 2022

In ZGR TPS200 NG 2.00 firmware version and 1.01 hardware version, the firmware upload process... Critical Unreviewed

CVE-2020-8974 was published Oct 18, 2022

RAVA certificate validation system has insufficient validation for user input. An unauthenticated... Critical Unreviewed

CVE-2022-39056 was published Oct 18, 2022

A vulnerability was found in SourceCodester Canteen Management System 1.0. It has been declared... Critical Unreviewed

CVE-2022-3583 was published Oct 18, 2022

Phpok 6.1 has a deserialization vulnerability via framework/phpok_call.php. Critical Unreviewed

CVE-2022-40889 was published Oct 18, 2022

A vulnerability classified as critical was found in X.org Server. Affected by this vulnerability... Critical Unreviewed

CVE-2022-3550 was published Oct 17, 2022

Previous 1…400Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,359 advisories