Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

301,774 advisories

Loading
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... High Unreviewed
CVE-2022-26720 was published May 27, 2022
The parser in accepts requests with a space (SP) right after the header name before the colon.... Moderate Unreviewed
CVE-2021-22959 was published May 24, 2022
An Authentication Bypass vulnerability in the SAML Authentication component of BlackBerry... High Unreviewed
CVE-2021-22155 was published May 24, 2022
A memory corruption issue was addressed with improved memory handling. This issue is fixed in... High Unreviewed
CVE-2022-26761 was published May 27, 2022
The issue was addressed with additional permissions checks. This issue is fixed in macOS Monterey... Moderate Unreviewed
CVE-2022-26767 was published May 27, 2022
An access control issue in Linglong v1.0 allows attackers to access the background of the... Critical Unreviewed
CVE-2022-29633 was published May 27, 2022
An attacker with physical access to the victim's device can bypass the application's password/pin... Moderate Unreviewed
CVE-2022-1716 was published Jun 3, 2022
NetScout nGeniusONE 6.3.2 allows Java RMI Code Execution. Critical Unreviewed
CVE-2021-45983 was published Jun 3, 2022
Percona XtraBackup 2.4.20 unintentionally writes the command line to any resulting backup file... Moderate Unreviewed
CVE-2022-26944 was published Jun 3, 2022
Signature bypass via multiple root elements High
CVE-2022-39299 was published for @node-saml/node-saml (npm) Oct 12, 2022
felixwilhelm
Credited to felixwilhelm
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding... Moderate Unreviewed
CVE-2022-22235 was published Oct 18, 2022
Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c ... High Unreviewed
CVE-2022-26981 was published Mar 14, 2022
Cross-site scripting (XSS) vulnerability in acpmoderate.php in PHP-Quick-Arcade (PHPQA) 3.0.21... Moderate Unreviewed
CVE-2010-1662 was published May 17, 2022
Directory traversal vulnerability in wmi.php in the Webmoney Web Merchant Interface (aka WMI or... Moderate Unreviewed
CVE-2010-1607 was published May 17, 2022
Unspecified vulnerability in HP Multifunction Peripheral (MFP) Digital Sending Software before 4... Moderate Unreviewed
CVE-2010-1558 was published May 17, 2022
Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow... High Unreviewed
CVE-2010-1595 was published May 17, 2022
SQL injection vulnerability in the Freestyle FAQs Lite (com_fsf) component, possibly 1.3, for... High Unreviewed
CVE-2010-1529 was published May 17, 2022
The computer telephony integration (CTI) server component in Cisco Unified Contact Center Express... High Unreviewed
CVE-2010-1570 was published May 17, 2022
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS... High Unreviewed
CVE-2022-22672 was published May 27, 2022
Unspecified vulnerability in the tech support diagnostic shell in Cisco Application Extension... High Unreviewed
CVE-2010-1572 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in the eTracker module before 6.x-1.2 for Drupal allows... Moderate Unreviewed
CVE-2010-1543 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in AlegroCart 1.1 allows remote attackers to... Moderate Unreviewed
CVE-2010-1611 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Mahara before 1.0.15, 1.1.x before 1.1.9,... Moderate Unreviewed
CVE-2010-1667 was published May 17, 2022
A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net... High Unreviewed
CVE-2022-1966 was published Jun 7, 2022
The "Add category" functionality inside the "Global Keywords" menu in "SeedDMS" version 6.0.18... Moderate Unreviewed
CVE-2022-28051 was published Jun 7, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database