GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,749
Composer 4,747
Erlang 35
GitHub Actions 29
Go 2,321
Maven 5,604
npm 3,955
NuGet 712
pip 3,736
Pub 12
RubyGems 921
Rust 972
Swift 38

Unreviewed advisories

All unreviewed 257,897

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

280,646 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Mozilla Firefox before 48.0 mishandles changes from 'INPUT type="password"' to 'INPUT type="text"... Moderate Unreviewed

CVE-2016-5260 was published May 17, 2022

Riverbed AppResponse 11.8.0, 11.8.5, 11.8.5a, 11.9.0, 11.9.0a, 11.10.0, 11.11.0, 11.11.0a, 11.11... High Unreviewed

CVE-2021-43271 was published Jun 4, 2022

Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11. High Unreviewed

CVE-2022-1987 was published Jun 4, 2022

In Real Player through 20.1.0.312, attackers can execute arbitrary code by placing a UNC share... High Unreviewed

CVE-2022-32291 was published Jun 6, 2022

Multiple vulnerabilities vulnerability in Drupal SAML SP 2.0 Single Sign On (SSO) - SAML Service... High Unreviewed

CVE-2022-26493 was published Jun 4, 2022

A blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows... High Unreviewed

CVE-2021-41932 was published Jun 7, 2022

Sensitive information exposure in Sign-out log in Samsung Account prior to version 13.2.00.6... Moderate Unreviewed

CVE-2022-30734 was published Jun 8, 2022

An unauthenticated attacker can send a specially crafted unauthenticated HTTP request to the... High Unreviewed

CVE-2022-31482 was published Jun 7, 2022

FUDForum 3.1.2 is vulnerable to Cross Site Scripting (XSS) via page_title param in Page Manager... Moderate Unreviewed

CVE-2022-30863 was published Jun 7, 2022

Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows... Moderate Unreviewed

CVE-2022-30736 was published Jun 8, 2022

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability was... Moderate Unreviewed

CVE-2022-29836 was published Nov 10, 2022

Some part of SAP NetWeaver (EP Web Page Composer) does not sufficiently validate an XML document... Moderate Unreviewed

CVE-2022-28217 was published Jun 14, 2022

A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being... Critical Unreviewed

CVE-2022-30927 was published Jun 7, 2022

Church Management System version 1.0 is affected by a SQL anjection vulnerability through... Critical Unreviewed

CVE-2021-41661 was published Jun 14, 2022

An unauthenticated attacker can send a specially crafted update file to the device that can... Critical Unreviewed

CVE-2022-31481 was published Jun 7, 2022

Jupiter Theme <= 6.10.1 and JupiterX Core Plugin <= 2.0.7 allow any authenticated attacker,... High Unreviewed

CVE-2022-1654 was published Jun 14, 2022

Improper handling of insufficient permissions vulnerability in addAppPackageNameToAllowList in... Moderate Unreviewed

CVE-2022-30727 was published Jun 8, 2022

AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this... Moderate Unreviewed

CVE-2022-31759 was published Jun 14, 2022

XFCE 4.16 allows attackers to execute arbitrary code because xdg-open can execute a .desktop file... High Unreviewed

CVE-2022-32278 was published Jun 14, 2022

Couchbase Server 5.x through 7.x before 7.0.4 exposes Sensitive Information to an Unauthorized... High Unreviewed

CVE-2022-32192 was published Jun 14, 2022

Adobe Media Encoder version 15.4 (and earlier) are affected by a memory corruption vulnerability.... High Unreviewed

CVE-2021-46818 was published Jun 14, 2022

Power Distribution Units running on Powertek firmware (multiple brands) before 3.30.30 allows... High Unreviewed

CVE-2022-33174 was published Jun 14, 2022

The Slideshow CK WordPress plugin before 1.4.10 does not sanitize and escape Slide's descriptions... Moderate Unreviewed

CVE-2022-1335 was published Jun 14, 2022

In telephony, there is a possible information disclosure due to a missing permission check. This... Moderate Unreviewed

CVE-2022-21749 was published Jun 7, 2022

The video framework has an out-of-bounds memory read/write vulnerability. Successful exploitation... High Unreviewed

CVE-2021-46814 was published Jun 14, 2022

Previous 1 2 … 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

280,646 advisories