Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,984
Erlang
39
GitHub Actions
38
Go
2,626
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
954
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

300,798 advisories

Loading
Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability.... High Unreviewed
CVE-2017-11277 was published May 17, 2022
Adobe Digital Editions 4.5.4 and earlier versions 4.5.4 and earlier have an exploitable memory... High Unreviewed
CVE-2017-3091 was published May 17, 2022
IdentityServer3 2.4.x, 2.5.x, and 2.6.x before 2.6.1 has XSS in an Angular expression on the... Moderate Unreviewed
CVE-2017-12677 was published May 17, 2022
Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability.... High Unreviewed
CVE-2017-11280 was published May 17, 2022
Adobe Digital Editions 4.5.4 and earlier has an exploitable memory corruption vulnerability.... High Unreviewed
CVE-2017-11276 was published May 17, 2022
Adobe Digital Editions 4.5.4 and earlier has a security bypass vulnerability. High Unreviewed
CVE-2017-11272 was published May 17, 2022
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\users_edit.php. High Unreviewed
CVE-2022-30829 was published Jun 3, 2022
elitecms 1.01 is vulnerable to SQL Injection via /admin/add_post.php. Critical Unreviewed
CVE-2022-30813 was published Jun 3, 2022
School Dormitory Management System 1.0 is vulnerable to SQL Injection via accounts... Critical Unreviewed
CVE-2022-30512 was published Jun 3, 2022
Online Ordering System 1.0 by oretnom23 is vulnerable to SQL Injection via admin/vieworders.php. Critical Unreviewed
CVE-2022-30797 was published Jun 3, 2022
elitecms 1.01 is vulnerable to SQL Injection via admin/edit_sidebar.php?page=2&sidebar= Critical Unreviewed
CVE-2022-30815 was published Jun 3, 2022
Wedding Management System v1.0 is vulnerable to SQL injection via /Wedding-Management/admin... High Unreviewed
CVE-2022-30818 was published Jun 3, 2022
In Wedding Management v1.0, there is an arbitrary file upload vulnerability in the picture upload... High Unreviewed
CVE-2022-30820 was published Jun 3, 2022
In Wedding Management System v1.0, the editing function of the "Services" module in the... High Unreviewed
CVE-2022-30821 was published Jun 3, 2022
Wedding Management System v1.0 is vulnerable to SQL Injection via admin\client_assign.php. High Unreviewed
CVE-2022-30826 was published Jun 3, 2022
Wuzhi CMS v4.1.0 contains a remote code execution (RCE) vulnerability in \attachment\admin\index... High Unreviewed
CVE-2020-20124 was published May 24, 2022
ACINQ Eclair before 0.6.3 allows loss of funds because of dust HTLC exposure. Critical Unreviewed
CVE-2021-41591 was published May 24, 2022
In conditionallyRemoveIdentifiers of SubscriptionController.java, there is a possible way to... Moderate Unreviewed
CVE-2021-0644 was published May 24, 2022
In lockAllProfileTasks of RootWindowContainer.java, there is a possible way to access the work... High Unreviewed
CVE-2021-0595 was published May 24, 2022
Windows Hello Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2021-42288 was published May 24, 2022
Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54... Moderate Unreviewed
CVE-2021-37968 was published May 24, 2022
In all versions of GitLab CE/EE since version 10.6, a project export leaks the external webhook... Moderate Unreviewed
CVE-2021-39898 was published May 24, 2022
The Batch Cat WordPress plugin through 0.3 defines 3 custom AJAX actions, which both require... Moderate Unreviewed
CVE-2021-24788 was published May 24, 2022
Azure RTOS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-26444, CVE... Low Unreviewed
CVE-2021-42323 was published May 24, 2022
School Dormitory Management System v1.0 is vulnerable to reflected cross-site scripting (XSS) via... Moderate Unreviewed
CVE-2022-30514 was published Jun 3, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database