GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,787
Composer 5,986
Erlang 73
GitHub Actions 53
Go 4,029
Maven 6,658
npm 6,516
NuGet 976
pip 5,380
Pub 13
RubyGems 1,070
Rust 1,404
Swift 61

Unreviewed advisories

All unreviewed 309,116

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

31,068 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

MTAppjQuery 1.8.1 and earlier allows remote PHP code execution via unspecified vectors. Critical Unreviewed

CVE-2018-0645 was published May 14, 2022

An issue was discovered on Foscam C2 devices with System Firmware 1.11.1.8 and Application... Critical Unreviewed

CVE-2018-19069 was published May 14, 2022

Exception in Modem IP stack while processing IPv6 packet in snapdragon automobile, snapdragon... Critical Unreviewed

CVE-2018-5915 was published May 14, 2022

While generating trusted application id, An integer overflow can occur giving the trusted... Critical Unreviewed

CVE-2016-10502 was published May 14, 2022

internal/advanced_comment_system/admin.php in Advanced Comment System 1.0 is prone to an SQL... Critical Unreviewed

CVE-2018-18619 was published May 14, 2022

Hardcoded credentials in the Ricoh myPrint application 2.9.2.4 for Windows and 2.2.7 for Android... Critical Unreviewed

CVE-2018-18006 was published May 14, 2022

nc-cms through 2017-03-10 allows remote attackers to execute arbitrary PHP code via the "Upload... Critical Unreviewed

CVE-2018-18874 was published May 14, 2022

The usbip_recv_xbuff function in drivers/usb/usbip/usbip_common.c in the Linux kernel before 4.5... Critical Unreviewed

CVE-2016-3955 was published May 17, 2022

MKCMS V6.2 has SQL injection via the /ucenter/active.php verify parameter. Critical Unreviewed

CVE-2020-22819 was published Nov 3, 2022

An issue was discovered in S-CMS 1.0. It allows SQL Injection via the js/pic.php P_id parameter. Critical Unreviewed

CVE-2018-20480 was published May 14, 2022

An issue was discovered in S-CMS 1.0. It allows SQL Injection via the wap_index.php?type=newsinfo... Critical Unreviewed

CVE-2018-20479 was published May 14, 2022

Loadbalancer.org Enterprise VA MAX before 8.3.3 has XSS because Apache HTTP Server logs are... Critical Unreviewed

CVE-2018-18864 was published May 14, 2022

Buffer Overflow in httpd in EpiCentro E_7.3.2+ allows attackers to execute code remotely via a... Critical Unreviewed

CVE-2018-7631 was published May 14, 2022

Hotels_Server through 2018-11-05 has SQL Injection via the controller/fetchpwd.php username... Critical Unreviewed

CVE-2019-6497 was published May 14, 2022

An issue was discovered in S-CMS 3.0. It allows SQL Injection via the bank/callback1.php P_no field. Critical Unreviewed

CVE-2018-20477 was published May 14, 2022

A buffer overflow may occur in the processing of a downlink NAS message in Qualcomm Telephony as... Critical Unreviewed

CVE-2017-8248 was published May 14, 2022

cgi_system in NUUO's NVRMini2 3.8.0 and below allows remote attackers to execute arbitrary code... Critical Unreviewed

CVE-2018-1149 was published May 14, 2022

S-CMS PHP 1.0 has SQL injection in member/member_news.php via the type parameter (aka the $N_type... Critical Unreviewed

CVE-2018-18887 was published May 14, 2022

An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon... Critical Unreviewed

CVE-2018-7809 was published May 14, 2022

International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl... Critical Unreviewed

CVE-2018-18928 was published May 14, 2022

Memory safety bugs present in Firefox 60. Some of these bugs showed evidence of memory corruption... Critical Unreviewed

CVE-2018-5186 was published May 14, 2022

Heap-based buffer overflow in libavformat/rtmppkt.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5,... Critical Unreviewed

CVE-2016-10191 was published May 14, 2022

An issue was discovered in tp5cms through 2017-05-25. admin.php/upload/picture.html allows remote... Critical Unreviewed

CVE-2018-19692 was published May 14, 2022

LogonTracer 1.2.0 and earlier allows remote attackers to conduct Python code injection attacks... Critical Unreviewed

CVE-2018-16168 was published May 14, 2022

SQL injection in logtable.php in TerraMaster TOS version 3.1.03 allows attackers to execute SQL... Critical Unreviewed

CVE-2018-13350 was published May 14, 2022

Previous 1…398…400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

31,068 advisories