GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,358
Composer 4,819
Erlang 36
GitHub Actions 32
Go 2,410
Maven 5,802
npm 4,046
NuGet 723
pip 3,842
Pub 12
RubyGems 933
Rust 1,003
Swift 38

Unreviewed advisories

All unreviewed 264,467

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

287,825 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Logo Slider WordPress plugin through 1.4.8 does not sanitise and escape the lsp_slider_id... Moderate Unreviewed

CVE-2022-1687 was published Jun 9, 2022

ToaruOS 1.99.2 is affected by incorrect access control via the kernel. Improper MMU management... High Unreviewed

CVE-2021-36710 was published Jun 9, 2022

Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise... High Unreviewed

CVE-2022-43521 was published Jan 5, 2023

Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise... High Unreviewed

CVE-2022-43520 was published Jan 5, 2023

PHP remote file inclusion vulnerability in include/template.php in Uiga Proxy, when... Moderate Unreviewed

CVE-2010-1528 was published May 17, 2022

Multiple directory traversal vulnerabilities in phpCDB 1.0 and earlier allow remote attackers to... High Unreviewed

CVE-2010-1537 was published May 17, 2022

Unspecified vulnerability in IBM Cognos 8 Business Intelligence before 8.4.1 FP1 has unknown... High Unreviewed

CVE-2010-1490 was published May 17, 2022

Multiple unspecified vulnerabilities in Shareaza before 2.3.1.0 have unknown impact and attack... High Unreviewed

CVE-2008-7164 was published May 17, 2022

Directory traversal vulnerability in the Sweety Keeper (com_sweetykeeper) component 1.5.x for... Moderate Unreviewed

CVE-2010-1474 was published May 17, 2022

SQL injection vulnerability in the JoltCard (com_joltcard) component 1.2.1 for Joomla! allows... High Unreviewed

CVE-2010-1496 was published May 17, 2022

Unspecified vulnerability in the product view functionality in VirtueMart 1.0.13a and earlier... Moderate Unreviewed

CVE-2008-7205 was published May 17, 2022

Mail in Apple iOS before 10 mishandles certificates, which makes it easier for man-in-the-middle... Moderate Unreviewed

CVE-2016-4747 was published May 17, 2022

Apple iOS before 10, when Handoff for Messages is used, does not ensure that a Messages signin... Low Unreviewed

CVE-2016-4740 was published May 17, 2022

Printing UIKit in Apple iOS before 10 mishandles environment variables, which allows local users... Low Unreviewed

CVE-2016-4749 was published May 17, 2022

The Sandbox Profiles component in Apple iOS before 10 does not properly restrict access to... Moderate Unreviewed

CVE-2016-4620 was published May 17, 2022

In Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from... High Unreviewed

CVE-2022-46081 was published Jan 4, 2023

A vulnerability exists in the ClearPass OnGuard macOS agent that allows for an attacker with... Moderate Unreviewed

CVE-2022-43540 was published Jan 5, 2023

SQL injection vulnerability in print_raincheck.php in phpRAINCHECK 1.0.1 and earlier allows... High Unreviewed

CVE-2010-1538 was published May 17, 2022

PHP remote file inclusion vulnerability in eva/index.php in EVA CMS 2.3.1, when register_globals... Moderate Unreviewed

CVE-2008-7183 was published May 17, 2022

Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise... High Unreviewed

CVE-2022-43522 was published Jan 5, 2023

A vulnerability was found in OSM Lab show-me-the-way. It has been rated as problematic. This... Moderate Unreviewed

CVE-2018-25064 was published Jan 5, 2023

The Discy WordPress theme before 5.2 lacks CSRF checks in some AJAX actions, allowing an attacker... Moderate Unreviewed

CVE-2022-1421 was published Jun 9, 2022

Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89... Moderate Unreviewed

CVE-2016-5148 was published May 17, 2022

The Assets component in Apple iOS before 10 allows man-in-the-middle attackers to block software... Moderate Unreviewed

CVE-2016-4741 was published May 17, 2022

The CP Image Store with Slideshow WordPress plugin before 1.0.68 does not sanitise and escape the... Critical Unreviewed

CVE-2022-1692 was published Jun 9, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

287,825 advisories