GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,477

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

256,181 advisories

Filter by severity

Sort by

Least recently updated

Buffer overflow in codecs/on2/dec/SoftVPX.cpp in libstagefright in mediaserver in Android 4.x... High Unreviewed

CVE-2016-3872 was published May 17, 2022

The unpack_read_samples function in frontend/get_audio.c in LAME 3.99.5 allows remote attackers... Moderate Unreviewed

CVE-2017-9412 was published May 17, 2022

internal/telephony/SMSDispatcher.java in Telephony in Android 4.x before 4.4.4, 5.0.x before 5.0... Moderate Unreviewed

CVE-2016-3883 was published May 17, 2022

A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130,... Critical Unreviewed

CVE-2021-1459 was published May 24, 2022

The Thrive Optimize WordPress plugin before 1.4.13.3, Thrive Comments WordPress plugin before 1.4... Moderate Unreviewed

CVE-2021-24219 was published May 24, 2022

On Juniper Networks Junos OS platforms with link aggregation (lag) configured, executing any... High Unreviewed

CVE-2021-0230 was published May 24, 2022

The Call&Book Mobile Bar WordPress plugin through 1.2.2 does not sanitize and escape some of its... Moderate Unreviewed

CVE-2022-1644 was published May 31, 2022

The Amazon Link WordPress plugin through 3.2.10 does not sanitise and escape some of its settings... Moderate Unreviewed

CVE-2022-1645 was published May 31, 2022

The IMDB info box WordPress plugin through 2.0 does not sanitize and escape some of its settings,... Moderate Unreviewed

CVE-2022-1294 was published May 31, 2022

The User Meta WordPress plugin before 2.4.3 does not sanitise and escape the Form Name, as well... Moderate Unreviewed

CVE-2022-0376 was published May 31, 2022

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers... Moderate Unreviewed

CVE-2022-30747 was published Jun 8, 2022

Sensitive information exposure in low-battery dumpstate log prior to SMR Jun-2022 Release 1... Low Unreviewed

CVE-2022-28794 was published Jun 8, 2022

Improper validation vulnerability in RemoteViews prior to SMR Jun-2022 Release 1 allows attackers... Critical Unreviewed

CVE-2022-30710 was published Jun 8, 2022

Sensitive information exposure vulnerability in FmmExtraOperation of Find My Mobile prior to 7.2... Low Unreviewed

CVE-2022-30742 was published Jun 8, 2022

Virtua Cobranca before 12R allows SQL Injection on the login page. High Unreviewed

CVE-2021-37589 was published Jun 8, 2022

Improper validation vulnerability in FeedsInfo prior to SMR Jun-2022 Release 1 allows attackers... Critical Unreviewed

CVE-2022-30711 was published Jun 8, 2022

A vulnerability classified as critical has been found in Demokratian. This affects an unknown... Critical Unreviewed

CVE-2020-36542 was published Jun 8, 2022

LibreHealth EHR Base 2.0.0 allows gacl/admin/acl_admin.php return_page XSS. Moderate Unreviewed

CVE-2022-31495 was published Jun 8, 2022

Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the... High Unreviewed

CVE-2021-24195 was published May 24, 2022

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from... High Unreviewed

CVE-2022-30128 was published Jun 2, 2022

A vulnerability due to the improper handling of direct memory access (DMA) buffers on EX4300... Moderate Unreviewed

CVE-2021-0242 was published May 24, 2022

An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress... Critical Unreviewed

CVE-2021-24215 was published May 24, 2022

An exploitable unatuhenticated command injection exists in the OpenClinic GA 5.173.3. Specially... Critical Unreviewed

CVE-2020-27227 was published May 24, 2022

The StaffList WordPress plugin before 3.1.5 does not properly sanitise and escape a parameter... Critical Unreviewed

CVE-2022-1556 was published May 31, 2022

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS... High Unreviewed

CVE-2022-26741 was published May 27, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

256,181 advisories