GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,952
Composer 4,274
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,419
Pub 12
RubyGems 891
Rust 872
Swift 36

Unreviewed advisories

All unreviewed 238,599

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

259,551 advisories

Filter by severity

Sort by

Least recently updated

The CGI framework in Kaya 0.4.0 allows remote attackers to inject arbitrary HTTP headers and... Moderate Unreviewed

CVE-2008-6428 was published May 17, 2022

SQL injection vulnerability in the Simple Random Objects (mw_random_objects) extension 1.0.3 and... High Unreviewed

CVE-2008-6460 was published May 17, 2022

Session fixation vulnerability in Edikon phpShop 0.8.1 allows remote attackers to hijack web... Moderate Unreviewed

CVE-2008-6455 was published May 17, 2022

Unspecified vulnerability in GreenSQL-Console before 0.3.5 allows attackers to obtain the ... Moderate Unreviewed

CVE-2008-6417 was published May 17, 2022

Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows... Moderate Unreviewed

CVE-2016-3951 was published May 17, 2022

Multiple buffer overflows in rtsp/ASessionDescription.cpp in libstagefright in mediaserver in... High Unreviewed

CVE-2016-3880 was published May 17, 2022

otool in Apple Xcode before 8 allows local users to gain privileges or cause a denial of service ... High Unreviewed

CVE-2016-4704 was published May 17, 2022

Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial... Critical Unreviewed

CVE-2016-4257 was published May 17, 2022

There's a flaw in the zeromq server in versions before 4.3.3 in src/decoder_allocators.hpp. The... High Unreviewed

CVE-2021-20235 was published May 24, 2022

An issue has been discovered in GitLab CE/EE affecting all versions starting with 13.7.9. A... High Unreviewed

CVE-2021-22203 was published May 24, 2022

Trend Micro Maximum Security 2022 is vulnerable to a link following vulnerability that could... High Unreviewed

CVE-2022-30687 was published May 28, 2022

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS... High Unreviewed

CVE-2022-26741 was published May 27, 2022

A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow... High Unreviewed

CVE-2020-7034 was published May 24, 2022

The User Meta WordPress plugin before 2.4.3 does not sanitise and escape the Form Name, as well... Moderate Unreviewed

CVE-2022-0376 was published May 31, 2022

The IMDB info box WordPress plugin through 2.0 does not sanitize and escape some of its settings,... Moderate Unreviewed

CVE-2022-1294 was published May 31, 2022

The WP 2FA WordPress plugin before 2.2.1 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2022-1527 was published May 31, 2022

The StaffList WordPress plugin before 3.1.5 does not properly sanitise and escape a parameter... Critical Unreviewed

CVE-2022-1556 was published May 31, 2022

The Team Members WordPress plugin before 5.1.1 does not escape some of its Team settings, which... Moderate Unreviewed

CVE-2022-1568 was published May 31, 2022

The Amazon Link WordPress plugin through 3.2.10 does not sanitise and escape some of its settings... Moderate Unreviewed

CVE-2022-1645 was published May 31, 2022

The Call&Book Mobile Bar WordPress plugin through 1.2.2 does not sanitize and escape some of its... Moderate Unreviewed

CVE-2022-1644 was published May 31, 2022

In Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older an internal... High Unreviewed

CVE-2021-20990 was published May 24, 2022

There is an Out-of-bounds memory access in Huawei Smartphone.Successful exploitation of this... Critical Unreviewed

CVE-2021-22474 was published May 24, 2022

An exploitable unatuhenticated command injection exists in the OpenClinic GA 5.173.3. Specially... Critical Unreviewed

CVE-2020-27227 was published May 24, 2022

An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress... Critical Unreviewed

CVE-2021-24215 was published May 24, 2022

The Thrive Optimize WordPress plugin before 1.4.13.3, Thrive Comments WordPress plugin before 1.4... Moderate Unreviewed

CVE-2021-24219 was published May 24, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

259,551 advisories