GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,152

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

301,790 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Owl Labs Meeting Owl 5.2.0.15 allows attackers to deactivate the passcode protection mechanism... Moderate Unreviewed

CVE-2022-31461 was published Jun 3, 2022

Owl Labs Meeting Owl 5.2.0.15 does not require a password for Bluetooth commands, because only... High Unreviewed

CVE-2022-31463 was published Jun 3, 2022

Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams... High Unreviewed

CVE-2022-31980 was published Jun 3, 2022

The issue was addressed with improved permissions logic. This issue is fixed in iOS 15 and iPadOS... Low Unreviewed

CVE-2021-30816 was published May 24, 2022

A flaw use after free in the Linux kernel pipes functionality was found in the way user do some... High Unreviewed

CVE-2022-1882 was published May 27, 2022

Adobe Experience Manager 6.0, 6.1, and 6.2 allow attackers to obtain sensitive audit log event... Moderate Unreviewed

CVE-2016-4169 was published May 17, 2022

Mozilla Firefox before 48.0 mishandles changes from 'INPUT type="password"' to 'INPUT type="text"... Moderate Unreviewed

CVE-2016-5260 was published May 17, 2022

An unauthenticated attacker can send a specially crafted update file to the device that can... Critical Unreviewed

CVE-2022-31481 was published Jun 7, 2022

Riverbed AppResponse 11.8.0, 11.8.5, 11.8.5a, 11.9.0, 11.9.0a, 11.10.0, 11.11.0, 11.11.0a, 11.11... High Unreviewed

CVE-2021-43271 was published Jun 4, 2022

TOTOLINK EX1200T V4.1.2cu.5215 contains an information disclosure vulnerability where an attacker... High Unreviewed

CVE-2021-42886 was published Jun 4, 2022

Multiple vulnerabilities vulnerability in Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service... High Unreviewed

CVE-2022-26493 was published Jun 4, 2022

Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11. High Unreviewed

CVE-2022-1987 was published Jun 4, 2022

A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being... Critical Unreviewed

CVE-2022-30927 was published Jun 7, 2022

Power Distribution Units running on Powertek firmware (multiple brands) before 3.30.30 allows... High Unreviewed

CVE-2022-33174 was published Jun 14, 2022

Adobe Media Encoder version 15.4 (and earlier) are affected by a memory corruption vulnerability.... High Unreviewed

CVE-2021-46818 was published Jun 14, 2022

In apusys driver, there is a possible system crash due to an integer overflow. This could lead to... Moderate Unreviewed

CVE-2022-21760 was published Jun 7, 2022

In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could... Moderate Unreviewed

CVE-2022-21747 was published Jun 7, 2022

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could... Moderate Unreviewed

CVE-2022-21753 was published Jun 7, 2022

In power service, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed

CVE-2022-21759 was published Jun 7, 2022

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows... Moderate Unreviewed

CVE-2022-30736 was published Jun 8, 2022

Couchbase Server 5.x through 7.x before 7.0.4 exposes Sensitive Information to an Unauthorized... High Unreviewed

CVE-2022-32192 was published Jun 14, 2022

The Slideshow CK WordPress plugin before 1.4.10 does not sanitize and escape Slide's descriptions... Moderate Unreviewed

CVE-2022-1335 was published Jun 14, 2022

In TOTOLINK EX1200T V4.1.2cu.5215, an attacker can start telnet without authorization because the... Moderate Unreviewed

CVE-2021-42892 was published Jun 4, 2022

Cross Site scripting (XSS) vulnerability inLibreHealth EHR Base 2.0.0 via interface/usergroup... Moderate Unreviewed

CVE-2022-31492 was published Jun 7, 2022

FUDForum 3.1.2 is vulnerable to Cross Site Scripting (XSS) via page_title param in Page Manager... Moderate Unreviewed

CVE-2022-30863 was published Jun 7, 2022

Previous 1…393…400 Next

Previous 1 2 … 391 392 393 394 395 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

301,790 advisories