GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
876 advisories
Filter by severity
DENX U-Boot through 2018.09-rc1 has a remotely exploitable buffer overflow via a malicious TFTP...
Critical
Unreviewed
CVE-2018-18439
was published
May 14, 2022
In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early...
Critical
Unreviewed
CVE-2021-45079
was published
Feb 8, 2022
A Buffer Overflow vulnerabilitiy exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44629
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44632
was published
Mar 11, 2022
A Buffer Overflow vulnerabiltiy exists in TP-LINK WR-886N 20190826 2.3.8 in thee /cloud_config...
Critical
Unreviewed
CVE-2021-44628
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44622
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in /cloud_config...
Critical
Unreviewed
CVE-2021-44625
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44626
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44630
was published
Mar 11, 2022
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in the /cloud_config...
Critical
Unreviewed
CVE-2021-44627
was published
Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's (DSA) PluginServlet...
Critical
Unreviewed
CVE-2021-42854
was published
Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's (DSA)...
Critical
Unreviewed
CVE-2021-42853
was published
Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent (DSA) has Remote Code...
Critical
Unreviewed
CVE-2021-42786
was published
Mar 11, 2022
It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's (DSA)...
Critical
Unreviewed
CVE-2021-42787
was published
Mar 11, 2022
The telnet_input_char function in opt/src/accel-pppd/cli/telnet.c suffers from a memory...
Critical
Unreviewed
CVE-2022-0982
was published
Mar 17, 2022
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in...
Critical
Unreviewed
CVE-2022-22586
was published
Mar 19, 2022
In Yokogawa WideField3 R1.01 - R4.03, a buffer overflow could be caused when a user loads a...
Critical
Unreviewed
CVE-2020-16232
was published
Mar 19, 2022
A logic issue was addressed with improved state management. This issue is fixed in tvOS 15.4, iOS...
Critical
Unreviewed
CVE-2022-22632
was published
Mar 19, 2022
The Online Admission System 1.0 allows an unauthenticated attacker to upload or transfer files of...
Critical
Unreviewed
CVE-2021-45835
was published
Mar 19, 2022
A memory corruption issue was addressed with improved input validation. This issue is fixed in...
Critical
Unreviewed
CVE-2022-22587
was published
Mar 19, 2022
VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x prior to 8.6.6, 8.7.x prior to 8.7...
Critical
Unreviewed
CVE-2022-22951
was published
Mar 24, 2022
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Attendance and Payroll...
Critical
Unreviewed
CVE-2021-44087
was published
Mar 19, 2022
VMware Carbon Black App Control (8.5.x prior to 8.5.14, 8.6.x prior to 8.6.6, 8.7.x prior to 8.7...
Critical
Unreviewed
CVE-2022-22952
was published
Mar 24, 2022
An Access Control vulnerability exists in SoroushPlus+ Messenger 1.0.30 in the Lock Screen...
Critical
Unreviewed
CVE-2022-26629
was published
Mar 25, 2022
The Popup Builder WordPress plugin before 4.1.1 does not sanitise and escape the sgpb...
Critical
Unreviewed
CVE-2022-0479
was published
Mar 29, 2022
ProTip!
Advisories are also available from the
GraphQL API