GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,030
Composer 4,876
Erlang 37
GitHub Actions 37
Go 2,526
Maven 5,976
npm 4,189
NuGet 742
pip 3,968
Pub 12
RubyGems 947
Rust 1,030
Swift 39

Unreviewed advisories

All unreviewed 271,317

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,052 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability classified as critical was found in SourceCodester Gas Agency Management System.... Critical Unreviewed

CVE-2022-2779 was published Aug 13, 2022

A vulnerability was found in SourceCodester Zoo Management System. It has been classified as... Critical Unreviewed

CVE-2022-2804 was published Aug 13, 2022

The GREYD.SUITE WordPress theme does not properly validate uploaded custom font packages, and... Critical Unreviewed

CVE-2022-2180 was published Aug 16, 2022

The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated... Critical Unreviewed

CVE-2019-15130 was published May 24, 2022

Trend Micro Apex One could be exploited by an attacker utilizing a command injection... High Unreviewed

CVE-2019-18188 was published May 24, 2022

The application manage_website.php on Garage Management System 1.0 is vulnerable to Shell File... High Unreviewed

CVE-2022-37184 was published Sep 1, 2022

The dzs-zoomsounds plugin through 2.0 for WordPress has admin/upload.php arbitrary file upload. Critical Unreviewed

CVE-2015-9471 was published May 24, 2022

This vulnerability allows remote attackers to create arbitrary files on affected installations of... Moderate Unreviewed

CVE-2020-8866 was published May 24, 2022

Kentico before 12.0.50 allows file uploads in which the Content-Type header is inconsistent with... Moderate Unreviewed

CVE-2019-19493 was published May 24, 2022

A privilege escalation vulnerability exists in the Remote Server functionality of Dream Report... High Unreviewed

CVE-2021-21957 was published Dec 9, 2021

Flatpress v1.2.1 was discovered to contain a remote code execution (RCE) vulnerability in the... High Unreviewed

CVE-2022-40048 was published Sep 30, 2022

A vulnerability has been identified in SPPA-T3000 Application Server (All versions). An attacker... Moderate Unreviewed

CVE-2019-18320 was published May 24, 2022

A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An... High Unreviewed

CVE-2019-18313 was published May 24, 2022

The Camera Upload functionality in Plex Media Server through 1.18.2.2029 allows remote... Moderate Unreviewed

CVE-2019-19141 was published May 24, 2022

zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname during an update... Moderate Unreviewed

CVE-2019-19925 was published May 24, 2022

File upload vulnerability in function upload in action/Core.class.php in zhimengzhe iBarn 1.5... High Unreviewed

CVE-2020-20588 was published Dec 15, 2022

An Arbitrary File Upload issue in the file browser of DIMO YellowBox CRM before 6.3.4 allows a... High Unreviewed

CVE-2019-14768 was published May 24, 2022

Vulnerability in the Oracle Financial Services Revenue Management and Billing product of Oracle... Moderate Unreviewed

CVE-2020-2730 was published May 24, 2022

Some Dahua software products have a vulnerability of unrestricted upload of file. After obtaining... High Unreviewed

CVE-2022-45427 was published Dec 27, 2022

AyaCMS 3.1.2 is vulnerable to Arbitrary file upload via /aya/module/admin/fst_down.inc.php Critical Unreviewed

CVE-2022-46102 was published Dec 22, 2022

The HTTP API in Prismview System 9 11.10.17.00 and Prismview Player 11 13.09.1100 allows remote... High Unreviewed

CVE-2019-20451 was published May 24, 2022

Multiple incomplete blacklist vulnerabilities in the avatar upload functionality in manageuser... Moderate Unreviewed

CVE-2015-0258 was published May 24, 2022

admin/imagepaster/image-upload.php in Chadha PHPKB Standard Multi-Language 9 allows remote... Moderate Unreviewed

CVE-2020-10386 was published May 24, 2022

An unrestricted file upload vulnerability in keywordsImport.php in TestLink 1.9.20 allows remote... Moderate Unreviewed

CVE-2020-8639 was published May 24, 2022

A Write to Arbitrary Location in Disk vulnerability exists in PRTG Network Monitor 19.1.49 and... High Unreviewed

CVE-2019-11074 was published May 24, 2022

Previous 1…12…123 Next

Previous 1 2 … 10 11 12 13 14 … 122 123 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,052 advisories