Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,752
Maven
5,000+
npm
4,357
NuGet
765
pip
4,121
Pub
12
RubyGems
961
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,763 advisories

Loading
Multiple PHP remote file inclusion vulnerabilities in Snipe Gallery 3.1.5 allow remote attackers... High Unreviewed
CVE-2010-2126 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in openMairie openCimetiere 2.01, when... Moderate Unreviewed
CVE-2010-1944 was published May 17, 2022
The software contains a hard-coded password it uses for its own inbound authentication or for... High Unreviewed
CVE-2021-27438 was published May 24, 2022
The WebWork 1 web application framework in Atlassian JIRA before 3.13.2 allows remote attackers... Moderate Unreviewed
CVE-2008-6531 was published May 17, 2022
Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and... High Unreviewed
CVE-2021-3115 was published May 24, 2022
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary... High Unreviewed
CVE-2008-6937 was published May 17, 2022
Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller... Critical Unreviewed
CVE-2020-21651 was published May 24, 2022
PHP remote file inclusion vulnerability in connexion.php in PHPGKit 0.9 allows remote attackers... High Unreviewed
CVE-2008-6491 was published May 17, 2022
PHP remote file inclusion vulnerability in news/include/createdb.php in Web Server Creator Web... High Unreviewed
CVE-2008-6545 was published May 17, 2022
** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in Simple Machines Forum (SMF)... High Unreviewed
CVE-2008-6544 was published May 17, 2022
The parameters $cache_path, $wp_cache_debug_ip, $wp_super_cache_front_page_text, ... High Unreviewed
CVE-2021-24312 was published May 24, 2022
uploadImage.php in ProjeQtOr before 6.3.2 allows remote authenticated users to execute arbitrary... High Unreviewed
CVE-2017-11760 was published May 17, 2022
job/uploadfile_save.php in MetInfo through 5.3.17 blocks the .php extension but not related... Critical Unreviewed
CVE-2017-11715 was published May 17, 2022
An arbitrary code execution vulnerability was discovered in Avaya Aura Device Services that may... High Unreviewed
CVE-2021-25654 was published May 24, 2022
Code Injection in metacalc Critical
CVE-2022-21122 was published for metacalc (npm) Jun 9, 2022
A remote code execution (RCE) vulnerability in template_user.php of ZZCMS version 2018 allows... High Unreviewed
CVE-2020-19822 was published May 24, 2022
Code injection via SVG file in convert-svg-core High
CVE-2022-24429 was published for convert-svg-core (npm) Jun 11, 2022
Unspecified vulnerability in Nagios before 3.0.6 has unspecified impact and remote attack vectors... Moderate Unreviewed
CVE-2008-6373 was published May 17, 2022
The Similar Posts WordPress plugin through 3.1.5 allow high privilege users to execute arbitrary... High Unreviewed
CVE-2021-24537 was published May 24, 2022
Wuzhi CMS v4.1.0 contains a remote code execution (RCE) vulnerability in \attachment\admin\index... High Unreviewed
CVE-2020-20124 was published May 24, 2022
The keep for python, as distributed on PyPI, included a code-execution backdoor inserted by a... Critical Unreviewed
CVE-2022-30877 was published Jun 9, 2022
PHP remote file inclusion vulnerability in eva/index.php in EVA CMS 2.3.1, when register_globals... Moderate Unreviewed
CVE-2008-7183 was published May 17, 2022
PHP remote file inclusion vulnerability in include/template.php in Uiga Proxy, when... Moderate Unreviewed
CVE-2010-1528 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in Specimen Image Database (SID), when... Moderate Unreviewed
CVE-2008-7152 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in V-webmail 1.6.4 allow remote attackers to... Moderate Unreviewed
CVE-2008-6840 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database