GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,018
Composer 4,300
Erlang 31
GitHub Actions 21
Go 2,069
Maven 5,241
npm 3,744
NuGet 668
pip 3,429
Pub 12
RubyGems 892
Rust 880
Swift 36

Unreviewed advisories

All unreviewed 240,523

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

261,541 advisories

Filter by severity

Sort by

Least recently updated

An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress... Critical Unreviewed

CVE-2021-24215 was published May 24, 2022

On Juniper Networks Junos OS platforms with link aggregation (lag) configured, executing any... High Unreviewed

CVE-2021-0230 was published May 24, 2022

The Thrive Optimize WordPress plugin before 1.4.13.3, Thrive Comments WordPress plugin before 1.4... Moderate Unreviewed

CVE-2021-24219 was published May 24, 2022

An exploitable unatuhenticated command injection exists in the OpenClinic GA 5.173.3. Specially... Critical Unreviewed

CVE-2020-27227 was published May 24, 2022

The WP 2FA WordPress plugin before 2.2.1 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2022-1527 was published May 31, 2022

Trend Micro Maximum Security 2022 is vulnerable to a link following vulnerability that could... High Unreviewed

CVE-2022-30687 was published May 28, 2022

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers... Moderate Unreviewed

CVE-2022-30747 was published Jun 8, 2022

Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers... Moderate Unreviewed

CVE-2022-30724 was published Jun 8, 2022

Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2... Low Unreviewed

CVE-2022-30742 was published Jun 8, 2022

internal/telephony/SMSDispatcher.java in Telephony in Android 4.x before 4.4.4, 5.0.x before 5.0... Moderate Unreviewed

CVE-2016-3883 was published May 17, 2022

A vulnerability classified as critical has been found in Demokratian. This affects an unknown... Critical Unreviewed

CVE-2020-36542 was published Jun 8, 2022

A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow... High Unreviewed

CVE-2020-7034 was published May 24, 2022

A vulnerability due to the improper handling of direct memory access (DMA) buffers on EX4300... Moderate Unreviewed

CVE-2021-0242 was published May 24, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the... High Unreviewed

CVE-2021-24194 was published May 24, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the... High Unreviewed

CVE-2021-24195 was published May 24, 2022

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS... High Unreviewed

CVE-2022-26741 was published May 27, 2022

The Team Members WordPress plugin before 5.1.1 does not escape some of its Team settings, which... Moderate Unreviewed

CVE-2022-1568 was published May 31, 2022

The IMDB info box WordPress plugin through 2.0 does not sanitize and escape some of its settings,... Moderate Unreviewed

CVE-2022-1294 was published May 31, 2022

The User Meta WordPress plugin before 2.4.3 does not sanitise and escape the Form Name, as well... Moderate Unreviewed

CVE-2022-0376 was published May 31, 2022

A vulnerability classified as problematic has been found in Fast Food Ordering System 1.0.... Moderate Unreviewed

CVE-2022-1991 was published Jun 8, 2022

The Call&Book Mobile Bar WordPress plugin through 1.2.2 does not sanitize and escape some of its... Moderate Unreviewed

CVE-2022-1644 was published May 31, 2022

The Amazon Link WordPress plugin through 3.2.10 does not sanitise and escape some of its settings... Moderate Unreviewed

CVE-2022-1645 was published May 31, 2022

The StaffList WordPress plugin before 3.1.5 does not properly sanitise and escape a parameter... Critical Unreviewed

CVE-2022-1556 was published May 31, 2022

Broadcasting Intent including the BluetoothDevice object without proper restriction of receivers... Moderate Unreviewed

CVE-2022-30725 was published Jun 8, 2022

In Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older an internal... High Unreviewed

CVE-2021-20990 was published May 24, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

261,541 advisories