Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,758
Maven
5,000+
npm
4,364
NuGet
766
pip
4,132
Pub
12
RubyGems
961
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,766 advisories

Loading
Unspecified vulnerability in Adobe Flash Player for Linux 10.0.12.36, and 9.0.151.0 and earlier,... High Unreviewed
CVE-2008-5499 was published May 17, 2022
PHP remote file inclusion vulnerability in index.php in A4Desk Event Calendar, when... Moderate Unreviewed
CVE-2008-6103 was published May 17, 2022
The WP SVG Icons WordPress plugin through 3.2.3 does not properly validate uploaded custom icon... High Unreviewed
CVE-2022-0863 was published Jun 14, 2022
During installation with certain driver software or application packages an arbitrary code... High Unreviewed
CVE-2020-28419 was published May 24, 2022
PHP remote file inclusion vulnerability in include/class_yapbbcooker.php in YapBB 1.2.Beta 2... Moderate Unreviewed
CVE-2008-5947 was published May 17, 2022
The loadModule function in lib/WebGUI/Asset.pm in WebGUI before 7.5.30 (stable) allows remote... High Unreviewed
CVE-2008-4798 was published May 17, 2022
PHP remote file inclusion vulnerability in read.php in Chattaitaliano Istant-Replay allows remote... High Unreviewed
CVE-2008-4911 was published May 17, 2022
PHP remote file inclusion vulnerability in include.php in PHPOutsourcing IdeaBox (aka IdeBox) 1.1... High Unreviewed
CVE-2008-5199 was published May 17, 2022
Unspecified vulnerability in testMaker before 3.0p16 allows remote authenticated users to execute... High Unreviewed
CVE-2008-5173 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in Philippe CROCHAT EasySite 2.0 allow remote... High Unreviewed
CVE-2008-6196 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in RobotStats 0.1 allow remote attackers to... High Unreviewed
CVE-2008-6206 was published May 17, 2022
Code Injection in GitHub repository jgraph/drawio prior to 19.0.2. Moderate Unreviewed
CVE-2022-2014 was published Jun 10, 2022
Code Injection in SEOmatic Critical
CVE-2021-41749 was published for nystudio107/craft-seomatic (Composer) Jun 13, 2022
Barco MirrorOp Windows Sender before 2.5.3.65 uses cleartext HTTP and thus allows rogue software... High Unreviewed
CVE-2021-38142 was published May 24, 2022
Multiple PHP remote file inclusion vulnerabilities in ComScripts TEAM Quick Classifieds 1.0 via... High Unreviewed
CVE-2008-6543 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to... High Unreviewed
CVE-2008-6066 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in V-webmail 1.6.4 allow remote attackers to... Moderate Unreviewed
CVE-2008-6840 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in Specimen Image Database (SID), when... Moderate Unreviewed
CVE-2008-7152 was published May 17, 2022
PHP remote file inclusion vulnerability in eva/index.php in EVA CMS 2.3.1, when register_globals... Moderate Unreviewed
CVE-2008-7183 was published May 17, 2022
PHP remote file inclusion vulnerability in include/template.php in Uiga Proxy, when... Moderate Unreviewed
CVE-2010-1528 was published May 17, 2022
The keep for python, as distributed on PyPI, included a code-execution backdoor inserted by a... Critical Unreviewed
CVE-2022-30877 was published Jun 9, 2022
The Similar Posts WordPress plugin through 3.1.5 allow high privilege users to execute arbitrary... High Unreviewed
CVE-2021-24537 was published May 24, 2022
Wuzhi CMS v4.1.0 contains a remote code execution (RCE) vulnerability in \attachment\admin\index... High Unreviewed
CVE-2020-20124 was published May 24, 2022
Unspecified vulnerability in Nagios before 3.0.6 has unspecified impact and remote attack vectors... Moderate Unreviewed
CVE-2008-6373 was published May 17, 2022
A remote code execution (RCE) vulnerability in template_user.php of ZZCMS version 2018 allows... High Unreviewed
CVE-2020-19822 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database