GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,009
Composer 4,300
Erlang 31
GitHub Actions 21
Go 2,065
Maven 5,241
npm 3,744
NuGet 668
pip 3,427
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 240,198

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

285 advisories

Filter by severity

Sort by

Least recently updated

Some Hikvision Hybrid SAN/Cluster Storage products have an access control vulnerability which can... Critical Unreviewed

CVE-2023-28808 was published Apr 11, 2023

A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been rated as critical.... Critical Unreviewed

CVE-2023-1557 was published Mar 22, 2023

Omron CJ1M unit v4.0 and prior has improper access controls on the memory region where the UM... Critical Unreviewed

CVE-2023-0811 was published Mar 16, 2023

A vulnerability was found in SourceCodester Online Food Ordering System 2.0 and classified as... Critical Unreviewed

CVE-2023-1432 was published Mar 16, 2023

XWiki Platform users may execute anything with superadmin right through comments and async macro Critical

CVE-2023-26471 was published for org.xwiki.platform:xwiki-platform-rendering-async-macro (Maven) Mar 3, 2023

XWiki Platform vulnerable to privilege escalation via properties with wiki syntax that are executed with wrong author Critical

CVE-2023-26474 was published for org.xwiki.platform:xwiki-platform-legacy-oldcore (Maven) Mar 3, 2023

A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been rated as critical... Critical Unreviewed

CVE-2023-0963 was published Feb 22, 2023

LS ELECTRIC XBC-DN32U with operating system version 01.80 does not properly control access to the... Critical Unreviewed

CVE-2023-22807 was published Feb 15, 2023

Answer contains Improper Access Control vulnerability Critical

CVE-2023-0744 was published for github.com/answerdev/answer (Go) Feb 8, 2023

A vulnerability was found in Little Apps Little Software Stats. It has been declared as critical.... Critical Unreviewed

CVE-2015-10057 was published Jan 16, 2023

An unauthenticated attacker in SAP NetWeaver AS for Java - version 7.50, due to improper access... Critical Unreviewed

CVE-2023-0017 was published Jan 10, 2023

A vulnerability has been found in ghostlander Halcyon and classified as critical. Affected by... Critical Unreviewed

CVE-2021-4300 was published Jan 5, 2023

rdiffweb Improper Access Control vulnerability Critical

CVE-2022-4724 was published for rdiffweb (pip) Dec 27, 2022

A vulnerability was found in House Rental System and classified as critical. Affected by this... Critical Unreviewed

CVE-2022-4276 was published Dec 3, 2022

A vulnerability, which was classified as critical, has been found in FeMiner wms. Affected by... Critical Unreviewed

CVE-2022-4272 was published Dec 3, 2022

A vulnerability, which was classified as critical, has been found in SourceCodester Human... Critical Unreviewed

CVE-2022-4273 was published Dec 3, 2022

A vulnerability classified as critical was found in SourceCodester Book Store Management System 1... Critical Unreviewed

CVE-2022-4229 was published Nov 30, 2022

A vulnerability, which was classified as critical, was found in SourceCodester Event Registration... Critical Unreviewed

CVE-2022-4232 was published Nov 30, 2022

The firmware of InHand Networks InRouter302 V3.5.45 introduces fixes for TALOS-2022-1472 and... Critical Unreviewed

CVE-2022-25932 was published Nov 9, 2022

easyii CMS's File Upload Management vulnerable to unrestricted upload Critical

CVE-2022-3771 was published for noumo/easyii (Composer) Oct 31, 2022

A vulnerability was found in seccome Ehoney. It has been rated as critical. This issue affects... Critical Unreviewed

CVE-2022-3735 was published Oct 28, 2022

An authentication bypass vulnerability exists in the GHOME control functionality of Abode Systems... Critical Unreviewed

CVE-2022-27805 was published Oct 25, 2022

Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords.... Critical Unreviewed

CVE-2022-2052 was published Oct 17, 2022

A vulnerability has been found in SourceCodester Human Resource Management System 1.0 and... Critical Unreviewed

CVE-2022-3458 was published Oct 12, 2022

A denial of service vulnerability exists in the ucloud_del_node functionality of TCL LinkHub Mesh... Critical Unreviewed

CVE-2022-26346 was published Aug 6, 2022

Previous 1 2 3 4 5 6 7 8 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

285 advisories