GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,938

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,355 advisories

Filter by severity

Sort by

Least recently updated

Omniverse Kit contains a vulnerability in the reference applications Create, Audio2Face, Isaac... High Unreviewed

CVE-2022-42268 was published Jan 13, 2023

The User Post Gallery WordPress plugin through 2.19 does not limit what callback functions can be... Critical Unreviewed

CVE-2022-4060 was published Jan 16, 2023

Dell EMC Metro node, Version(s) prior to 7.1, contain a Code Injection Vulnerability. An... High Unreviewed

CVE-2022-34456 was published Jan 18, 2023

The absence of filters when loading some sections in the web application of the vulnerable device... High Unreviewed

CVE-2022-24915 was published Mar 11, 2022

The absence of filters when loading some sections in the web application of the vulnerable device... High Unreviewed

CVE-2022-22985 was published Mar 11, 2022

Template injection in connection test endpoint leads to RCE in GitHub repository sqlpad/sqlpad... High Unreviewed

CVE-2022-0944 was published Mar 16, 2022

The XML-RPC implementation on Cisco TelePresence Recording Server devices with software 1.6.x and... High Unreviewed

CVE-2011-0386 was published May 17, 2022

CRLF injection vulnerability in chart.cgi in Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x... Moderate Unreviewed

CVE-2010-4572 was published May 17, 2022

Chamilo LMS v1.11.14 was discovered to contain a zero click code injection vulnerability which... Moderate Unreviewed

CVE-2021-38745 was published Mar 22, 2022

The Amelia WordPress plugin before 1.0.47 stores image blobs into actual files whose extension is... High Unreviewed

CVE-2022-0687 was published Mar 22, 2022

A code injection vulnerability exists in one of the webpages in GE Reason RT430, RT431 & RT434... High Unreviewed

CVE-2020-25197 was published Mar 19, 2022

A remote code execution (RCE) vulnerability in Beekeeper Studio v3.2.0 allows attackers to... Critical Unreviewed

CVE-2022-26174 was published Mar 23, 2022

taocms v3.0.2 allows attackers to execute code injection via arbitrarily editing the .htaccess file. Critical Unreviewed

CVE-2022-25578 was published Mar 20, 2022

A remote code execution (RCE) vulnerability in Ionize v1.0.8.1 allows attackers to execute... Critical Unreviewed

CVE-2022-26272 was published Mar 26, 2022

Marky commit 3686565726c65756e was discovered to contain a remote code execution (RCE)... Critical Unreviewed

CVE-2022-26205 was published Mar 28, 2022

Notable v1.8.4 does not filter text editing, allowing attackers to execute arbitrary code via a... Critical Unreviewed

CVE-2022-26198 was published Mar 28, 2022

Clash for Windows v0.19.8 was discovered to allow arbitrary code execution via a crafted payload... Critical Unreviewed

CVE-2022-26255 was published Mar 29, 2022

Multiple PHP remote file inclusion vulnerabilities in Seagull 0.6.7 allow remote attackers to... High Unreviewed

CVE-2010-3209 was published May 17, 2022

The default configuration of the <Button2> binding in Uzbl before 2010.08.05 does not properly... Moderate Unreviewed

CVE-2010-2809 was published May 17, 2022

Multiple PHP remote file inclusion vulnerabilities in Haudenschilt Family Connections CMS (FCMS)... High Unreviewed

CVE-2010-3419 was published May 17, 2022

A security vulnerability has been identified in HPE StoreServ Management Console (SSMC). An... High Unreviewed

CVE-2021-29214 was published Dec 11, 2021

Web Media Extensions Remote Code Execution Vulnerability Critical Unreviewed

CVE-2021-43214 was published Dec 16, 2021

Visual Studio Code Remote Code Execution Vulnerability High Unreviewed

CVE-2021-43891 was published Dec 16, 2021

Multiple PHP remote file inclusion vulnerabilities in Multi-lingual E-Commerce System 0.2 allow... High Unreviewed

CVE-2010-3210 was published May 17, 2022

Microsoft 4K Wireless Display Adapter Remote Code Execution Vulnerability Critical Unreviewed

CVE-2021-43899 was published Dec 16, 2021

Previous 1 2 3 4 5 … 134 135 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,355 advisories