Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

300,871 advisories

Loading
SAP Analysis for Microsoft Office - version 2.8, allows an attacker with high privileges to read... Moderate Unreviewed
CVE-2021-38175 was published May 24, 2022
An unauthenticated attacker can send a specially crafted network packet to delete a user from the... High Unreviewed
CVE-2022-31484 was published Jun 7, 2022
Improper check in Loader in Samsung Internet prior to 17.0.1.69 allows attackers to spoof address... Moderate Unreviewed
CVE-2022-30738 was published Jun 8, 2022
An unauthenticated attacker could arbitrarily upload firmware files to the target device,... High Unreviewed
CVE-2022-31480 was published Jun 7, 2022
FUDforum 3.1.2 is vulnerable to Remote Code Execution through Upload File feature of File... High Unreviewed
CVE-2022-30860 was published Jun 7, 2022
FUDforum 3.1.2 is vulnerable to Stored XSS via Forum Name field in Forum Manager Feature. Moderate Unreviewed
CVE-2022-30861 was published Jun 7, 2022
Session fixation vulnerability in Edikon phpShop 0.8.1 allows remote attackers to hijack web... Moderate Unreviewed
CVE-2008-6455 was published May 17, 2022
In ccu, there is a possible memory corruption due to a double free. This could lead to local... Moderate Unreviewed
CVE-2022-21758 was published Jun 7, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 14... Moderate Unreviewed
CVE-2022-1783 was published Jun 7, 2022
Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows... Moderate Unreviewed
CVE-2022-30743 was published Jun 8, 2022
When the feature is configured, improper authorization in the Interactive Web Terminal in GitLab... High Unreviewed
CVE-2022-1944 was published Jun 7, 2022
Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows... High Unreviewed
CVE-2022-30735 was published Jun 8, 2022
In memory management driver, there is a possible system crash due to a missing bounds check. This... Moderate Unreviewed
CVE-2021-0422 was published May 24, 2022
Cross-site Scripting (XSS) - Stored in GitHub repository nocodb/nocodb prior to 0.91.7. Moderate Unreviewed
CVE-2022-2022 was published Jun 8, 2022
An uncontrolled resource consumption (memory leak) flaw was found in the ZeroMQ client in... Moderate Unreviewed
CVE-2021-20234 was published May 24, 2022
There's a flaw in the zeromq server in versions before 4.3.3 in src/decoder_allocators.hpp. The... High Unreviewed
CVE-2021-20235 was published May 24, 2022
internal/telephony/SMSDispatcher.java in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x... Low Unreviewed
CVE-2016-3888 was published May 17, 2022
An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress... Critical Unreviewed
CVE-2021-24215 was published May 24, 2022
Unspecified vulnerability in Android before 2016-09-01 has unknown impact and attack vectors. Critical Unreviewed
CVE-2016-3877 was published May 17, 2022
server/wm/WindowManagerService.java in Android 6.x before 2016-09-01 does not enforce the... High Unreviewed
CVE-2016-3875 was published May 17, 2022
CORE/HDD/src/wlan_hdd_wext.c in the Qualcomm Wi-Fi driver in Android before 2016-09-05 on Nexus... High Unreviewed
CVE-2016-3874 was published May 17, 2022
The Synaptics touchscreen driver in Android before 2016-09-05 on Nexus 5X and 9 devices allows... High Unreviewed
CVE-2016-3865 was published May 17, 2022
internal/telephony/SMSDispatcher.java in Telephony in Android 4.x before 4.4.4, 5.0.x before 5.0... Moderate Unreviewed
CVE-2016-3883 was published May 17, 2022
Buffer overflow in codecs/on2/dec/SoftVPX.cpp in libstagefright in mediaserver in Android 4.x... High Unreviewed
CVE-2016-3872 was published May 17, 2022
The web-based management interface on Cisco Small Business 220 devices with firmware before 1.0.1... High Unreviewed
CVE-2016-1472 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database