Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,316 advisories

Loading
Autodesk AutoCAD product suite, Revit, Design Review and Navisworks releases using PDFTron prior... High Unreviewed
CVE-2022-27871 was published Jun 22, 2022
In Bento4 1.6.0-638, there is an allocator is out of memory in the function AP4_Array... High Unreviewed
CVE-2021-40941 was published Jun 28, 2022
An issue was discovered in MediaWiki through 1.38.1. The lemma length of a Wikibase lexeme is... High Unreviewed
CVE-2022-34750 was published Jun 29, 2022
The GetHintFormat function in GPAC 1.0.1 allows attackers to cause a denial of service via a... Moderate Unreviewed
CVE-2021-40609 was published Jun 29, 2022
The schm_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service via a... Moderate Unreviewed
CVE-2021-40607 was published Jun 29, 2022
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetCfm. High Unreviewed
CVE-2022-32040 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the desc... High Unreviewed
CVE-2022-32052 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the password... High Unreviewed
CVE-2022-32044 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the desc... High Unreviewed
CVE-2022-32046 was published Jul 2, 2022
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function... High Unreviewed
CVE-2022-32043 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the command... High Unreviewed
CVE-2022-32048 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the url... High Unreviewed
CVE-2022-32049 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the cloneMac... High Unreviewed
CVE-2022-32050 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the cloneMac... High Unreviewed
CVE-2022-32053 was published Jul 2, 2022
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function... High Unreviewed
CVE-2022-32041 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the desc, week... High Unreviewed
CVE-2022-32051 was published Jul 2, 2022
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the listN parameter in the... High Unreviewed
CVE-2022-32039 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the desc... High Unreviewed
CVE-2022-32047 was published Jul 2, 2022
Tenda M3 V1.0.0.12 was discovered to contain a stack overflow via the function formSetAPCfg. High Unreviewed
CVE-2022-32037 was published Jul 2, 2022
TOTOLINK T6 V4.1.9cu.5179_B20201015 was discovered to contain a stack overflow via the desc... High Unreviewed
CVE-2022-32045 was published Jul 2, 2022
Improper input validation vulnerability in Space of Cybozu Garoon 4.0.0 to 5.5.1 allows a remote... Moderate Unreviewed
CVE-2022-29892 was published Jul 5, 2022
An issue was discovered in glFTPd 2.11a that allows remote attackers to cause a denial of service... High Unreviewed
CVE-2021-31645 was published Jul 8, 2022
A malicious server can serve excessive amounts of `Set-Cookie:` headers in a HTTP response to... Moderate Unreviewed
CVE-2022-32205 was published Jul 8, 2022
curl < 7.84.0 supports "chained" HTTP compression algorithms, meaning that a serverresponse can... Moderate Unreviewed
CVE-2022-32206 was published Jul 8, 2022
KubeEdge DoS when signing the CSR from EdgeCore Moderate
CVE-2022-31075 was published for github.com/kubeedge/kubeedge (Go) Jul 11, 2022
DavidKorczynski AdamKorcz
Credited to DavidKorczynski and AdamKorcz
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database