Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,969
Erlang
39
GitHub Actions
38
Go
2,626
Maven
5,000+
npm
4,257
NuGet
760
pip
4,051
Pub
12
RubyGems
954
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

300,637 advisories

Loading
An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic... Moderate Unreviewed
CVE-2022-30783 was published May 27, 2022
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin... High Unreviewed
CVE-2022-30834 was published Jun 3, 2022
All versions of Elastic Cloud Enterprise has the Elasticsearch “anonymous” user enabled by... High Unreviewed
CVE-2021-22146 was published May 24, 2022
There is a vulnerability of tampering with the kernel in Huawei Smartphone.Successful... Critical Unreviewed
CVE-2021-36986 was published May 24, 2022
An issue in the authentication mechanism in Nong Ge File Explorer v1.4 unauthenticated allows to... Moderate Unreviewed
CVE-2020-23058 was published May 24, 2022
Insufficient input validation in PSP firmware for discrete TPM commands could allow a potential... High Unreviewed
CVE-2020-12946 was published May 24, 2022
Improper access control in the software installer for the Intel(R) NUC HDMI Firmware Update Tool... High Unreviewed
CVE-2021-33089 was published May 24, 2022
Stack-based buffer overflow in Tenda AC-10U AC1200 Router US_AC10UV1.0RTL_V15.03.06... Critical Unreviewed
CVE-2020-22079 was published May 24, 2022
Vulnerability in the RDBMS Security component of Oracle Database Server. Supported versions that... Moderate Unreviewed
CVE-2021-35551 was published May 24, 2022
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey... Moderate Unreviewed
CVE-2022-26731 was published May 27, 2022
Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via /rdms/classes/Master... Critical Unreviewed
CVE-2022-31946 was published Jun 3, 2022
Improper Check for Unusual or Exceptional Conditions in Elasticsearch High
CVE-2022-23712 was published for org.elasticsearch:elasticsearch (Maven) Jun 7, 2022
A vulnerability was found in Thomson TCW710 ST5D.10.05. It has been classified as problematic.... Moderate Unreviewed
CVE-2018-25038 was published Jun 13, 2022
Link Following in Deno High
CVE-2021-41641 was published for deno (Rust) Jun 13, 2022
Owl Labs Meeting Owl 5.2.0.15 does not require a password for Bluetooth commands, because only... High Unreviewed
CVE-2022-31463 was published Jun 3, 2022
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/admin/bookings... Critical Unreviewed
CVE-2022-31348 was published Jun 3, 2022
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams... High Unreviewed
CVE-2022-31980 was published Jun 3, 2022
Online Car Wash Booking System v1.0 by oretnom23 has SQL injection in /ocwbs/admin/services... Critical Unreviewed
CVE-2022-31352 was published Jun 3, 2022
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin... High Unreviewed
CVE-2022-30832 was published Jun 3, 2022
Wedding Management System v1.0 is vulnerable to SQL Injection. via Wedding-Management/admin... High Unreviewed
CVE-2022-30836 was published Jun 3, 2022
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=reports... High Unreviewed
CVE-2022-31974 was published Jun 3, 2022
Online Ordering System By janobe 2.3.2 is vulnerable to SQL Injection via /ordering/admin/orders... Critical Unreviewed
CVE-2022-31329 was published Jun 3, 2022
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests... High Unreviewed
CVE-2022-31983 was published Jun 3, 2022
GUnet Open eClass (aka openeclass) before 3.12.2 allows XSS via the modules/auth/formuser.php... Moderate Unreviewed
CVE-2021-44266 was published Jun 12, 2022
A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been classified as very... Critical Unreviewed
CVE-2017-20039 was published Jun 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database