GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,152

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

301,790 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An authenticated attacker can send a specially crafted route to the “edit_route.cgi” binary and... High Unreviewed

CVE-2022-31486 was published Jun 7, 2022

Improper handling of insufficient permissions vulnerability in addAppPackageNameToAllowList in... Moderate Unreviewed

CVE-2022-30727 was published Jun 8, 2022

A blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows... High Unreviewed

CVE-2021-41932 was published Jun 7, 2022

Sensitive information exposure in Sign-out log in Samsung Account prior to version 13.2.00.6... Moderate Unreviewed

CVE-2022-30734 was published Jun 8, 2022

Jupiter Theme <= 6.10.1 and JupiterX Core Plugin <= 2.0.7 allow any authenticated attacker,... High Unreviewed

CVE-2022-1654 was published Jun 14, 2022

XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file... High Unreviewed

CVE-2022-32278 was published Jun 14, 2022

A cross-site scripting (XSS) vulnerability exists in Mini CMS V1.11. The vulnerability exists in... Moderate Unreviewed

CVE-2021-41663 was published Jun 14, 2022

Some part of SAP NetWeaver (EP Web Page Composer) does not sufficiently validate an XML document... Moderate Unreviewed

CVE-2022-28217 was published Jun 14, 2022

AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this... Moderate Unreviewed

CVE-2022-31759 was published Jun 14, 2022

In TOTOLINK EX1200T V4.1.2cu.5215, an attacker can obtain sensitive information (wifikey, etc.)... High Unreviewed

CVE-2021-42891 was published Jun 4, 2022

In telephony, there is a possible information disclosure due to a missing permission check. This... Moderate Unreviewed

CVE-2022-21749 was published Jun 7, 2022

The video framework has an out-of-bounds memory read/write vulnerability. Successful exploitation... High Unreviewed

CVE-2021-46814 was published Jun 14, 2022

In Real Player through 20.1.0.312, attackers can execute arbitrary code by placing a UNC share... High Unreviewed

CVE-2022-32291 was published Jun 6, 2022

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability was... Moderate Unreviewed

CVE-2022-29836 was published Nov 10, 2022

Church Management System version 1.0 is affected by a SQL anjection vulnerability through... Critical Unreviewed

CVE-2021-41661 was published Jun 14, 2022

An unauthenticated attacker can send a specially crafted unauthenticated HTTP request to the... High Unreviewed

CVE-2022-31482 was published Jun 7, 2022

An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569... High Unreviewed

CVE-2022-43310 was published Nov 10, 2022

The administrative web interface in Cisco TelePresence Video Communication Server Expressway X8.5... High Unreviewed

CVE-2016-1468 was published May 17, 2022

Persistent Cross Site Scripting (XSS) exists in Splunk Enterprise 6.5.x before 6.5.2, 6.4.x... Moderate Unreviewed

CVE-2017-12572 was published May 17, 2022

The Backup functionality in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows attackers to... Moderate Unreviewed

CVE-2016-4253 was published May 17, 2022

The Grapevine update process in Cisco Application Policy Infrastructure Controller Enterprise... High Unreviewed

CVE-2016-1365 was published May 17, 2022

Microsoft Windows PDF Library in Windows Server 2008 R2 SP1, Windows 8.1, Windows Server 2012... High Unreviewed

CVE-2017-0293 was published May 17, 2022

The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through... High Unreviewed

CVE-2016-1409 was published May 17, 2022

Zoho ManageEngine OpManager 11 through 12.2 uses a custom encryption algorithm to protect the... Critical Unreviewed

CVE-2015-9107 was published May 17, 2022

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the... High Unreviewed

CVE-2017-8674 was published May 17, 2022

Previous 1…394…400 Next

Previous 1 2 … 392 393 394 395 396 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

301,790 advisories