GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,733
Composer 4,238
Erlang 31
GitHub Actions 21
Go 2,005
Maven 5,193
npm 3,716
NuGet 661
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,706

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

23,748 advisories

Filter by severity

Sort by

Least recently updated

A use after free issue was addressed with improved memory management. This issue is fixed in iOS... Critical Unreviewed

CVE-2020-9895 was published May 24, 2022

A vulnerability was found in Centralized-Salesforce-Dev-Framework. It has been declared as... Critical Unreviewed

CVE-2016-15007 was published Jan 2, 2023

The ntpd_driver component before 1.3.0 and 2.x before 2.2.0 for Robot Operating System (ROS)... Critical Unreviewed

CVE-2022-48198 was published Jan 1, 2023

This issue was addressed with improved entitlements. This issue is fixed in iOS 13.6 and iPadOS... Critical Unreviewed

CVE-2020-9898 was published May 24, 2022

A path handling issue was addressed with improved validation. This issue is fixed in iOS 13.6 and... Critical Unreviewed

CVE-2020-9920 was published May 24, 2022

A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0... Critical Unreviewed

CVE-2022-42475 was published Jan 2, 2023

A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread... Critical Unreviewed

CVE-2020-36329 was published May 24, 2022

A vulnerability was found in porpeeranut go-with-me. It has been declared as critical. Affected... Critical Unreviewed

CVE-2014-125032 was published Jan 2, 2023

A vulnerability has been identified in SIMATIC WinCC OA V3.16 (All versions in default... Critical Unreviewed

CVE-2022-33139 was published Jun 22, 2022

The Build App Online WordPress plugin before 1.0.19 does not properly sanitise and escape some... Critical Unreviewed

CVE-2022-3241 was published Jan 3, 2023

A certificate validation issue existed when processing administrator added certificates. This... Critical Unreviewed

CVE-2020-9868 was published May 24, 2022

A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function... Critical Unreviewed

CVE-2020-36328 was published May 24, 2022

aEnrich a+HRD has improper validation for login function. An unauthenticated remote attacker can... Critical Unreviewed

CVE-2022-39042 was published Jan 3, 2023

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function... Critical Unreviewed

CVE-2020-36331 was published May 24, 2022

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16340 was published May 13, 2022

An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub... Critical Unreviewed

CVE-2017-16339 was published May 13, 2022

In the MMM::Agent::Helpers::Network::send_arp function in MySQL Multi-Master Replication Manager ... Critical Unreviewed

CVE-2017-14481 was published May 13, 2022

Tenda F1203 V2.0.1.6 was discovered to contain a command injection vulnerability via the mac... Critical Unreviewed

CVE-2022-46538 was published Dec 20, 2022

AP Manager in Innovaphone before 13r2 Service Release 17 allows command injection via a modified... Critical Unreviewed

CVE-2022-41870 was published Oct 1, 2022

Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this... Critical Unreviewed

CVE-2022-46324 was published Dec 20, 2022

A vulnerability was found in 3D City Database OGC Web Feature Service up to 5.2.1. It has been... Critical Unreviewed

CVE-2022-4607 was published Dec 19, 2022

GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects... Critical Unreviewed

CVE-2021-46848 was published Oct 24, 2022

In the MMM::Agent::Helpers::Network::add_ip function in MySQL Multi-Master Replication Manager ... Critical Unreviewed

CVE-2017-14475 was published May 13, 2022

Fingerprint calibration has a vulnerability of lacking boundary judgment. Successful exploitation... Critical Unreviewed

CVE-2022-46319 was published Dec 20, 2022

Some smartphones have configuration issues. Successful exploitation of this vulnerability may... Critical Unreviewed

CVE-2022-46327 was published Dec 20, 2022

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

23,748 advisories