GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,302
Composer 4,359
Erlang 33
GitHub Actions 22
Go 2,124
Maven 5,302
npm 3,787
NuGet 683
pip 3,467
Pub 12
RubyGems 894
Rust 892
Swift 38

Unreviewed advisories

All unreviewed 244,615

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,137 advisories

Filter by severity

Sort by

Least recently updated

The stub component of Absolute Computrace Agent V70.785 executes code from a disk's inter... High Unreviewed

CVE-2009-5151 was published May 2, 2022

Absolute Computrace Agent V80.845 and V80.866 does not have a digital signature for the... High Unreviewed

CVE-2009-5150 was published May 2, 2022

IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.5 does not properly read the... High Unreviewed

CVE-2009-2092 was published May 2, 2022

Cross-domain vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 7 allows remote... Moderate Unreviewed

CVE-2008-2947 was published May 1, 2022

Buffer overflow in SpoonFTP 1.0.0.12 allows remote attackers to execute arbitrary code via a long... High Unreviewed

CVE-2001-0781 was published Apr 30, 2022

The ThirstyAffiliates Affiliate Link Manager WordPress plugin before 3.10.5 lacks authorization... Moderate Unreviewed

CVE-2022-0634 was published Apr 26, 2022

The flo-launch WordPress plugin before 2.4.1 injects code into wp-config.php when creating a... Critical Unreviewed

CVE-2022-0541 was published Apr 26, 2022

Plugin Settings Update vulnerability in ShortPixel's ShortPixel Adaptive Images plugin <= 3.3.1... Moderate Unreviewed

CVE-2022-29417 was published Apr 26, 2022

The setup program for the affected product configures its files and folders with full access,... High Unreviewed

CVE-2021-43986 was published Apr 21, 2022

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker... High Unreviewed

CVE-2022-20716 was published Apr 16, 2022

An Improper Access Control vulnerability in the Juniper Networks Paragon Active Assurance Control... High Unreviewed

CVE-2022-22190 was published Apr 15, 2022

A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23... Moderate Unreviewed

CVE-2022-25650 was published Apr 13, 2022

A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V,... High Unreviewed

CVE-2022-25755 was published Apr 13, 2022

ZeroTierOne for windows local privilege escalation because of incorrect directory privilege in... High Unreviewed

CVE-2022-1316 was published Apr 12, 2022

Improper access control vulnerability in S Secure prior to SMR Apr-2022 Release 1 allows physical... Moderate Unreviewed

CVE-2022-25831 was published Apr 12, 2022

Improper access control vulnerability in FactoryCamera prior to version 2.1.96 allows attacker to... High Unreviewed

CVE-2022-27838 was published Apr 12, 2022

Improper access control vulnerability in Samsung Flow prior to version 4.8.06.5 allows attacker... Low Unreviewed

CVE-2022-28775 was published Apr 12, 2022

Improper access control vulnerability in Samsung Security Supporter prior to version 1.2.40.0... Low Unreviewed

CVE-2022-28778 was published Apr 12, 2022

Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local... Low Unreviewed

CVE-2022-28777 was published Apr 12, 2022

A vulnerability in the Common Execution Environment (CEE) ConfD CLI of Cisco Ultra Cloud Core -... High Unreviewed

CVE-2022-20762 was published Apr 7, 2022

Improper Access Control in GitHub repository phpipam/phpipam prior to 1.4.6. Moderate Unreviewed

CVE-2022-1223 was published Apr 5, 2022

Improper Access Control in GitHub repository janeczku/calibre-web prior to 0.6.16. Moderate Unreviewed

CVE-2022-0405 was published Apr 4, 2022

The Advanced Contact form 7 DB WordPress plugin before 1.8.7 does not have authorisation nor CSRF... High Unreviewed

CVE-2021-24905 was published Mar 22, 2022

Improper access control vulnerability in McAfee WebAdvisor Chrome and Edge browser extensions up... High Unreviewed

CVE-2022-0815 was published Mar 12, 2022

The public API error causes for the attacker to be able to bypass API access control. Critical Unreviewed

CVE-2022-23730 was published Mar 12, 2022

Previous 1 2 … 82 83 84 85 86 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,137 advisories