Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,757
Maven
5,000+
npm
4,363
NuGet
766
pip
4,128
Pub
12
RubyGems
961
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,765 advisories

Loading
Multiple PHP remote file inclusion vulnerabilities in Pecio CMS 2.0.5 allow remote attackers to... High Unreviewed
CVE-2010-3204 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in DiY-CMS 1.0 allow remote attackers to... High Unreviewed
CVE-2010-3206 was published May 17, 2022
In all versions of GitLab CE/EE, certain Unicode characters can be abused to commit malicious... High Unreviewed
CVE-2021-39908 was published Apr 3, 2022
Rockwell Automation Studio 5000 Logix Designer (all versions) are vulnerable when an attacker who... High Unreviewed
CVE-2022-1159 was published Apr 3, 2022
In StackStorm versions prior to 3.6.0, the jinja interpreter was not run in sandbox mode and thus... High Unreviewed
CVE-2021-44657 was published Dec 16, 2021
Microsoft Defender for IoT Remote Code Execution Vulnerability This CVE ID is unique from CVE... Critical Unreviewed
CVE-2021-42310 was published Dec 16, 2021
Microsoft SharePoint Server Remote Code Execution Vulnerability This CVE ID is unique from CVE... High Unreviewed
CVE-2021-42294 was published Dec 16, 2021
A remote code execution (RCE) vulnerability in course_intro_pdf_import.php of Chamilo LMS v1.11.x... High Unreviewed
CVE-2021-35413 was published Dec 4, 2021
Bot Framework SDK Remote Code Execution Vulnerability Critical Unreviewed
CVE-2021-43225 was published Dec 16, 2021
Microsoft Office Graphics Remote Code Execution Vulnerability High Unreviewed
CVE-2021-43875 was published Dec 16, 2021
Microsoft Defender for IoT Remote Code Execution Vulnerability This CVE ID is unique from CVE... High Unreviewed
CVE-2021-42314 was published Dec 16, 2021
Microsoft Defender for IoT Remote Code Execution Vulnerability This CVE ID is unique from CVE... High Unreviewed
CVE-2021-42315 was published Dec 16, 2021
Microsoft 4K Wireless Display Adapter Remote Code Execution Vulnerability Critical Unreviewed
CVE-2021-43899 was published Dec 16, 2021
Microsoft Defender for IoT Remote Code Execution Vulnerability This CVE ID is unique from CVE... High Unreviewed
CVE-2021-43889 was published Dec 16, 2021
Web Media Extensions Remote Code Execution Vulnerability Critical Unreviewed
CVE-2021-43214 was published Dec 16, 2021
A security vulnerability has been identified in HPE StoreServ Management Console (SSMC). An... High Unreviewed
CVE-2021-29214 was published Dec 11, 2021
Visual Studio Code Remote Code Execution Vulnerability High Unreviewed
CVE-2021-43891 was published Dec 16, 2021
Multiple PHP remote file inclusion vulnerabilities in Multi-lingual E-Commerce System 0.2 allow... High Unreviewed
CVE-2010-3210 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in Haudenschilt Family Connections CMS (FCMS)... High Unreviewed
CVE-2010-3419 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in Seagull 0.6.7 allow remote attackers to... High Unreviewed
CVE-2010-3209 was published May 17, 2022
The default configuration of the <Button2> binding in Uzbl before 2010.08.05 does not properly... Moderate Unreviewed
CVE-2010-2809 was published May 17, 2022
Notable v1.8.4 does not filter text editing, allowing attackers to execute arbitrary code via a... Critical Unreviewed
CVE-2022-26198 was published Mar 28, 2022
Clash for Windows v0.19.8 was discovered to allow arbitrary code execution via a crafted payload... Critical Unreviewed
CVE-2022-26255 was published Mar 29, 2022
Marky commit 3686565726c65756e was discovered to contain a remote code execution (RCE)... Critical Unreviewed
CVE-2022-26205 was published Mar 28, 2022
A remote code execution (RCE) vulnerability in Ionize v1.0.8.1 allows attackers to execute... Critical Unreviewed
CVE-2022-26272 was published Mar 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database