GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,920
Composer 5,068
Erlang 39
GitHub Actions 38
Go 2,722
Maven 6,143
npm 4,329
NuGet 762
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 279,212

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

304,132 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

openibd in OpenFabrics Enterprise Distribution (OFED) 1.5.2 allows local users to overwrite... Moderate Unreviewed

CVE-2010-1693 was published May 17, 2022

Directory traversal vulnerability in the Code-Garage NoticeBoard (com_noticeboard) component 1.3... Moderate Unreviewed

CVE-2010-1658 was published May 17, 2022

Multiple cross-site request forgery (CSRF) vulnerabilities in the Chaos Tool Suite (aka CTools)... Moderate Unreviewed

CVE-2010-1547 was published May 17, 2022

SQL injection exists in Quest KACE Asset Management Appliance 6.4.120822 through 7.2, Systems... Critical Unreviewed

CVE-2017-12567 was published May 17, 2022

The RB Internal Links WordPress plugin through 2.0.16 does not have CSRF check in place when... Moderate Unreviewed

CVE-2022-1759 was published Jun 14, 2022

The Filr WordPress plugin before 1.2.2.1 does not have authorisation check in two of its AJAX... High Unreviewed

CVE-2022-1777 was published Jun 14, 2022

The WP Athletics WordPress plugin through 1.1.7 does not sanitize parameters before storing them... Moderate Unreviewed

CVE-2022-1549 was published Jun 14, 2022

Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to elevate privileges due to the... Moderate Unreviewed

CVE-2017-8642 was published May 17, 2022

Windows Subsystem for Linux in Windows 10 1703, allows a denial of service vulnerability due to... Moderate Unreviewed

CVE-2017-8627 was published May 17, 2022

The WP Statistics WordPress plugin before 13.2.2 does not sanitise the REQUEST_URI parameter... Moderate Unreviewed

CVE-2022-1005 was published Jun 9, 2022

The Discy WordPress theme before 5.2 does not check for CSRF tokens in the AJAX action... Moderate Unreviewed

CVE-2022-1422 was published Jun 9, 2022

The WP Born Babies WordPress plugin through 1.0 does not sanitise and escape some of its fields,... Moderate Unreviewed

CVE-2022-1506 was published Jun 9, 2022

The Logo Slider WordPress plugin through 1.4.8 does not sanitise and escape the lsp_slider_id... Moderate Unreviewed

CVE-2022-1687 was published Jun 9, 2022

A vulnerability, which was classified as critical, has been found in The Next Generation of... High Unreviewed

CVE-2017-20017 was published Jun 9, 2022

Cross-site Scripting in RosarioSIS Moderate

CVE-2022-1997 was published for francoisjacquet/rosariosis (Composer) Jun 9, 2022

The Discy WordPress theme before 5.2 lacks CSRF checks in some AJAX actions, allowing an attacker... Moderate Unreviewed

CVE-2022-1421 was published Jun 9, 2022

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the... Critical Unreviewed

CVE-2022-30923 was published Jun 9, 2022

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the GO... Critical Unreviewed

CVE-2022-30910 was published Jun 9, 2022

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the... Critical Unreviewed

CVE-2022-30912 was published Jun 9, 2022

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the... Critical Unreviewed

CVE-2022-30925 was published Jun 9, 2022

H3C Magic R100 R100V100R005 was discovered to contain a stack overflow vulnerability via the CMD... Critical Unreviewed

CVE-2022-30909 was published Jun 9, 2022

There is a SQL Injection vulnerability in ChurchCRM 4.4.5 via the 'PersonID' field in /churchcrm... High Unreviewed

CVE-2022-31325 was published Jun 9, 2022

ToaruOS 1.99.2 is affected by incorrect access control via the kernel. Improper MMU management... High Unreviewed

CVE-2021-36710 was published Jun 9, 2022

Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise... High Unreviewed

CVE-2022-43522 was published Jan 5, 2023

Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise... High Unreviewed

CVE-2022-43520 was published Jan 5, 2023

Previous 1…396…400 Next

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

304,132 advisories