GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
42 advisories
Filter by severity
Access of Resource Using Incompatible Type ('Type Confusion') in yourls/yourls
Critical
CVE-2019-14537
was published
for
yourls/yourls
(Composer)
Sep 23, 2019
Access of Resource Using Incompatible Type in Hermes
Critical
CVE-2021-24044
was published
for
hermes-engine
(npm)
Jan 16, 2022
Type Confusion in ImpressCMS
Critical
CVE-2021-26600
was published
for
impresscms/impresscms
(Composer)
Mar 29, 2022
Access of Resource Using Incompatible Type in Facebook Hermes
Critical
CVE-2020-1911
was published
for
hermes-engine
(npm)
May 24, 2022
The type inference system allows the compilation of functions that can cause type confusions...
Critical
Unreviewed
CVE-2019-9791
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7970
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7975
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7971
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7969
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7972
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7973
was published
May 24, 2022
Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have a type confusion...
Critical
Unreviewed
CVE-2019-7974
was published
May 24, 2022
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X...
Critical
Unreviewed
CVE-2016-6992
was published
May 13, 2022
Adobe Flash Player versions 28.0.0.161 and earlier have an exploitable type confusion...
Critical
Unreviewed
CVE-2018-4920
was published
May 14, 2022
An issue was discovered in the Headunit NTG6 in the MBUX Infotainment System on Mercedes-Benz...
Critical
Unreviewed
CVE-2021-23908
was published
May 24, 2022
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS...
Critical
Unreviewed
CVE-2021-1829
was published
May 24, 2022
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of...
Critical
Unreviewed
CVE-2019-10231
was published
May 13, 2022
A type confusion vulnerability could be triggered when resolving the "typeof" unary operator in...
Critical
Unreviewed
CVE-2021-24045
was published
Dec 14, 2021
njs through 0.7.1, used in NGINX, was discovered to contain a control flow hijack caused by a...
Critical
Unreviewed
CVE-2021-46463
was published
Feb 15, 2022
Firebase PHP-JWT key/algorithm type confusion
Critical
CVE-2021-46743
was published
for
firebase/php-jwt
(Composer)
Mar 30, 2022
Unsafe fall-through in getWhereConditions
Critical
CVE-2023-22579
was published
for
@sequelize/core
(npm)
Feb 23, 2023
Rust Failure Crate Vulnerable to Type confusion
Critical
CVE-2019-25010
was published
for
failure
(Rust)
Aug 25, 2021
Buffer Overflow vulnerability in Qihoo 360 Chrome v13.0.2170.0 allows attacker to escalate...
Critical
Unreviewed
CVE-2021-33970
was published
Apr 20, 2023
An error in Hermes' algorithm for copying objects properties prior to commit...
Critical
Unreviewed
CVE-2023-23557
was published
May 19, 2023
ProTip!
Advisories are also available from the
GraphQL API