GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,988
Erlang
29
GitHub Actions
16
Go
1,776
Maven
5,000+
npm
3,542
NuGet
617
pip
3,125
Pub
10
RubyGems
838
Rust
790
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
223,201 advisories
Filter by severity
In the Linux kernel before 5.1, there is a memory leak in __feat_register_sp() in net/dccp/feat.c...
Moderate
Unreviewed
CVE-2019-20096
was published
May 24, 2022
nhttpd in Nostromo before 2.1 is vulnerable to a path traversal that may allow an attacker to...
Critical
Unreviewed
CVE-2022-48253
was published
Jan 11, 2023
A vulnerability classified as critical has been found in TuziCMS 2.0.6. This affects the function...
Critical
Unreviewed
CVE-2023-0243
was published
Jan 12, 2023
A cross-site scripting (XSS) vulnerability in the component /admin/register.php of Online Student...
Moderate
Unreviewed
CVE-2022-46503
was published
Jan 12, 2023
NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before...
High
Unreviewed
CVE-2022-41742
was published
Oct 20, 2022
NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before...
High
Unreviewed
CVE-2022-41741
was published
Oct 20, 2022
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
Critical
Unreviewed
CVE-2017-16325
was published
Jan 12, 2023
In the Linux kernel before 5.3.4, a reference count usage error in the fib6_rule_suppress()...
High
Unreviewed
CVE-2019-18198
was published
May 24, 2022
** DISPUTED ** Insecure folder permissions in the Windows installation path of Shibboleth Service...
High
Unreviewed
CVE-2023-22947
was published
Jan 11, 2023
Improper Input Validation vulnerability in HTTP/1.1 header parsing of Apache Traffic Server...
High
Unreviewed
CVE-2022-28129
was published
Aug 11, 2022
Improper Input Validation vulnerability in header parsing of Apache Traffic Server allows an...
High
Unreviewed
CVE-2021-37150
was published
Aug 11, 2022
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
High
Unreviewed
CVE-2017-16303
was published
Jan 12, 2023
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
High
Unreviewed
CVE-2017-16302
was published
Jan 12, 2023
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
High
Unreviewed
CVE-2017-16322
was published
Jan 12, 2023
Under some circumstances an Insufficiently Protected Credentials vulnerability in Johnson...
High
Unreviewed
CVE-2021-36204
was published
Jan 13, 2023
There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2cap_core.c's...
Moderate
Unreviewed
CVE-2022-42895
was published
Nov 23, 2022
Delta Electronics InfraSuite Device Master versions 00.00.01a and prior deserialize user-supplied...
High
Unreviewed
CVE-2022-41778
was published
Jan 13, 2023
The APDFL.dll contains a memory corruption vulnerability while parsing specially crafted PDF...
High
Unreviewed
CVE-2022-3161
was published
Jan 13, 2023
Authenticated mail users, under specific circumstances, could add files with unsanitized content...
High
Unreviewed
CVE-2022-42136
was published
Jan 13, 2023
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
High
Unreviewed
CVE-2017-16267
was published
Jan 12, 2023
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
Critical
Unreviewed
CVE-2017-16295
was published
Jan 12, 2023
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
High
Unreviewed
CVE-2017-16301
was published
Jan 12, 2023
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
Moderate
Unreviewed
CVE-2017-16264
was published
Jan 12, 2023
InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version...
High
Unreviewed
CVE-2023-22601
was published
Jan 13, 2023
Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the ...
High
Unreviewed
CVE-2017-16294
was published
Jan 12, 2023
ProTip!
Advisories are also available from the
GraphQL API