GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,971
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
308 advisories
Filter by severity
Zend Framework SQL injection vulnerability
Critical
CVE-2014-8089
was published
for
zendframework/zend-db
(Composer)
Apr 23, 2024
An issue in SeaCMS v.12.9 allows an attacker to execute arbitrary commands via the admin_safe.php...
Critical
Unreviewed
CVE-2023-46010
was published
Oct 25, 2023
Nanopb before 0.3.1 allows size_t overflows in pb_dec_bytes and pb_dec_string.
Critical
Unreviewed
CVE-2014-125106
was published
Jun 18, 2023
A vulnerability has been found in codepeople cp-polls Plugin 1.0.1 and classified as critical....
Critical
Unreviewed
CVE-2014-125091
was published
Mar 5, 2023
java-xmlbuilder vulnerable to XML External Entity Reference
Critical
CVE-2014-125087
was published
for
com.jamesmurty.utils:java-xmlbuilder
(Maven)
Feb 19, 2023
A vulnerability has been found in Gimmie Plugin 1.2.2 and classified as critical. Affected by...
Critical
Unreviewed
CVE-2014-125086
was published
Feb 6, 2023
A vulnerability, which was classified as critical, was found in Gimmie Plugin 1.2.2. Affected is...
Critical
Unreviewed
CVE-2014-125085
was published
Feb 6, 2023
A vulnerability, which was classified as critical, has been found in Gimmie Plugin 1.2.2. This...
Critical
Unreviewed
CVE-2014-125084
was published
Feb 6, 2023
A vulnerability has been found in Anant Labs google-enterprise-connector-dctm up to 3.2.3 and...
Critical
Unreviewed
CVE-2014-125083
was published
Jan 19, 2023
A vulnerability, which was classified as critical, has been found in risheesh debutsav. This...
Critical
Unreviewed
CVE-2014-125081
was published
Jan 18, 2023
A vulnerability was found in nivit redports. It has been declared as critical. This vulnerability...
Critical
Unreviewed
CVE-2014-125082
was published
Jan 18, 2023
A vulnerability has been found in frontaccounting faplanet and classified as critical. This...
Critical
Unreviewed
CVE-2014-125080
was published
Jan 16, 2023
A vulnerability, which was classified as critical, has been found in pointhi searx_stats. This...
Critical
Unreviewed
CVE-2014-125077
was published
Jan 15, 2023
A vulnerability was found in agy pontifex.http. It has been declared as critical. This...
Critical
Unreviewed
CVE-2014-125079
was published
Jan 15, 2023
A vulnerability was found in gmail-servlet and classified as critical. This issue affects the...
Critical
Unreviewed
CVE-2014-125075
was published
Jan 11, 2023
A vulnerability was found in NoxxieNl Criminals. It has been classified as critical. Affected is...
Critical
Unreviewed
CVE-2014-125076
was published
Jan 11, 2023
A vulnerability was found in Nayshlok Voyager. It has been declared as critical. Affected by this...
Critical
Unreviewed
CVE-2014-125074
was published
Jan 11, 2023
A vulnerability was found in mapoor voteapp. It has been rated as critical. Affected by this...
Critical
Unreviewed
CVE-2014-125073
was published
Jan 10, 2023
A vulnerability was found in lukehutch Gribbit. It has been classified as problematic. Affected...
Critical
Unreviewed
CVE-2014-125071
was published
Jan 9, 2023
A vulnerability classified as critical was found in corincerami curiosity. Affected by this...
Critical
Unreviewed
CVE-2014-125067
was published
Jan 8, 2023
PaginationServiceProvider SQL Injection vulnerability
Critical
CVE-2014-125029
was published
for
ttskch/pagination-service-provider
(Composer)
Jan 8, 2023
A vulnerability was found in ada-l0velace Bid and classified as critical. This issue affects some...
Critical
Unreviewed
CVE-2014-125063
was published
Jan 7, 2023
gosqljson SQL Injection vulnerability
Critical
CVE-2014-125064
was published
for
github.com/elgs/gosqljson
(Go)
Jan 7, 2023
A vulnerability, which was classified as critical, was found in john5223 bottle-auth. Affected is...
Critical
Unreviewed
CVE-2014-125065
was published
Jan 7, 2023
A vulnerability classified as critical was found in ananich bitstorm. Affected by this...
Critical
Unreviewed
CVE-2014-125062
was published
Jan 7, 2023
ProTip!
Advisories are also available from the
GraphQL API